12 STEPS INVOLVED IN CERTIFICATION ISO 27001- INFORMATION SECURITY MANAGEMENT SYSTEMS by SAUDI LOCAL AGENCY