Suntrust Bank gets ISO, PCI DSS certification
SUNTRUST Bank nigeria Limited has been awarded ISO 2007:2013 and the Payment Card Industry Data Security Standards certification by the PECB Canada, a leading organisation in audit management systems and processes.
The certification is the world’s highest accreditation for Information Security Management System.
The bank, in a statement, said it was awarded the ISO/ IEC 27001:2013 certification after undergoing series of intense implementation exercise and audit processes which began last October.
The statement read in part, “This certification is a proof of our commitment to provide, all our participants with maximum protection. This process involved auditing and verification of our Information Security Management System practices by PECB.
“The certification is a clear indication of the strength of our investments in people, process and technology for enhancing the customer experience by improving adequate information security.”
The ISO 27001 Information Security Management Systems is the international best practice standard for information security.
ISO 27001:2013, the current version of the standard, provides a set of standardised requirements for an information security management system.
According the lender, it is the only auditable international standard which defines the requirements to ensure that sufficient security controls are instituted within the certified organisation.
The bank is required to undergo an annual audit review and three-year recertification process such that the information security standard is maintained, while internal audit will also conduct bi-annual audit review as part of requirement.