Suntrust Bank gets ISO, PCI DSS cer­ti­fi­ca­tion

The Punch - - CAPITAL MARKET -

SUNTRUST Bank nige­ria Lim­ited has been awarded ISO 2007:2013 and the Pay­ment Card In­dus­try Data Se­cu­rity Stan­dards cer­ti­fi­ca­tion by the PECB Canada, a lead­ing or­gan­i­sa­tion in au­dit man­age­ment sys­tems and pro­cesses.

The cer­ti­fi­ca­tion is the world’s high­est ac­cred­i­ta­tion for In­for­ma­tion Se­cu­rity Man­age­ment Sys­tem.

The bank, in a state­ment, said it was awarded the ISO/ IEC 27001:2013 cer­ti­fi­ca­tion af­ter un­der­go­ing se­ries of in­tense im­ple­men­ta­tion ex­er­cise and au­dit pro­cesses which be­gan last Oc­to­ber.

The state­ment read in part, “This cer­ti­fi­ca­tion is a proof of our com­mit­ment to pro­vide, all our par­tic­i­pants with max­i­mum pro­tec­tion. This process in­volved au­dit­ing and ver­i­fi­ca­tion of our In­for­ma­tion Se­cu­rity Man­age­ment Sys­tem prac­tices by PECB.

“The cer­ti­fi­ca­tion is a clear in­di­ca­tion of the strength of our in­vest­ments in peo­ple, process and tech­nol­ogy for en­hanc­ing the cus­tomer ex­pe­ri­ence by im­prov­ing ad­e­quate in­for­ma­tion se­cu­rity.”

The ISO 27001 In­for­ma­tion Se­cu­rity Man­age­ment Sys­tems is the in­ter­na­tional best prac­tice stan­dard for in­for­ma­tion se­cu­rity.

ISO 27001:2013, the cur­rent ver­sion of the stan­dard, pro­vides a set of stan­dard­ised re­quire­ments for an in­for­ma­tion se­cu­rity man­age­ment sys­tem.

Ac­cord­ing the lender, it is the only au­ditable in­ter­na­tional stan­dard which de­fines the re­quire­ments to en­sure that suf­fi­cient se­cu­rity con­trols are in­sti­tuted within the cer­ti­fied or­gan­i­sa­tion.

The bank is re­quired to un­dergo an an­nual au­dit re­view and three-year re­cer­ti­fi­ca­tion process such that the in­for­ma­tion se­cu­rity stan­dard is main­tained, while in­ter­nal au­dit will also con­duct bi-an­nual au­dit re­view as part of re­quire­ment.

Newspapers in English

Newspapers from Nigeria

© PressReader. All rights reserved.