The National Pension Commission (PenCom) has attained ISO 27001:2013, an international standard dedicated to information security management system (ISMS).
The International Organisation for Standardisation (ISO) 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organisation.
PenCom, in a statement, said it was awarded a certificate of compliance on January 8 after its ISMS met all necessary requirements.
“The ISMS of the National Pension Commission was designed to achieve the ISO 27001:2013 standard, which is an internationally recognized set of information security standards that govern the security of information assets such as intellectual property, financial information, employee information, as well as information entrusted by third parties,” the statement read.
Advertisement
“The standards are published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
“The Commission had been evaluated by the Professional Evaluation and Certification Board (PECB) in all core areas of its operations and its ISMS was certified to be in compliance with the ISO 27001:2013 Standard in all the core areas of its operations.”
The commission said the certification indicates its commitment to the highest standards of confidentiality, integrity and availability of data on contributors, retirees and stakeholders in the pension industry
Advertisement
“It is also an affirmation that the commission had put in place, business controls and management processes to safeguard its information assets from threats and vulnerabilities,” PenCom added.
Add a comment