Sinapi Aba Savings and Loans Company Limited, a leading non-banking financial institution in Ghana has received ISO 27001 certification per the central bank’s directive to financial institutions to enhance cyber and information security.
This makes it the first Ghanaian savings and loans company to obtain the certification to improve its Information Security Management Systems.
Mr Degraft Agyapong, Head of Cyber and Information Security at Sinapi Aba Savings and Loans, who briefed the media in Kumasi on Friday said the company made a frantic effort to safeguard its data and improve customer confidence in the company hence the attainment of this feat.
He explained that Sinapi Aba Savings and Loan’s certification follows Bank of Ghana’s directive that financial institutions must meet the international standardization of being ISO compliant in the wake of the banking sector challenges in recent years.
It would be recalled that many players in the financial sector were affected by the regulator’s unprecedented financial sector clean-up exercise.
ISO 27001 structures how businesses should manage risk associated with information security threats, policies, procedures and training for information security threats.
Impact on business
According to Mr Agyapong, by obtaining certification in ISO 27001, organizations have the opportunity to prove credibility and show customers that the organization is working according to recognized best practices.
This credibility is often a deciding factor, giving the certified organization a competitive advantage on the financial market.
It means customers data and information are given maximum security and priority of protection.
The Head of Cyber and Information Security said ISO 27001 is easily recognized all around the world as it increases business opportunities for organizations and professionals.
He explained that the standard provides companies with the necessary know-how for protecting their most valuable information, but the company in this way proves to its customers and partners that it safeguards their data.
As technology is developed and improved, so does the increased need for information security.
As a result, many businesses like Sinapi Aba Savings and Loans have resolved to continuously vote funds for security investment to maintain appropriate security controls, levels of risk and data sensitivity.
Background
ISO 27001 which is published by the International Organization for Standardization (ISO), in partnership with the International Electrotechnical Commission (IEC) is the leading international standard compliance and focuses on information security.
ISO-27001 is part of a set of standards developed to handle information security as it provides a framework to help organizations of any size or any industry protect their information systematically and cost-effectively by adopting an Information Security Management System (ISMS).
The standard contains information security guidelines and requirements intended to protect an organization’s data assets from loss or unauthorized access and recognized its commitment to information security management through certification.
It includes a risk assessment process, organizational structure, information classification, access control mechanisms, physical and technical safeguards, information security policies, procedures, monitoring and reporting guidelines.
