By Dipo Olowookere
The ISO/IEC 27001:2013 certification earlier obtained in 2015 by the Central Securities Clearing System (CSCS) Plc has been resecured by the company.
This followed the recent audit of its compliance with information security risks controls by the British Standards Institution (BSI), UK, one of the world’s largest accreditation bodies for ISO certifications.
The audit involved a series of process validation and assurance check of controls with respect to company and client data management.
Managing Director of CSCS, Mr Haruna Jalo-Waziri, described this development as a significant capital market infrastructure and indeed, the Central Securities Depository for the Nigerian capital market, one of CSCS’ paramount areas of focus is protection of commercially sensitive information belonging to the company and its investors.
According to Mr. Jalo-Waziri, “CSCS is committed to upholding the highest standards of security for the processes, people and technology powering our services,” adding that, “The confidentiality, integrity and availability of information under our custody is held sacrosanct.
He said further that the, “ISO recertification provides assurance to all our customers that we have controls in place to identify and mitigate potential risks to confidential information,” noting that, “We work hard to ensure that we build trust and credibility in the market so as to inspire confidence among our stakeholders.”
Mr Jalo-Waziri added that the “recertification serves to test and affirm our commitment to information security at all levels of our business and I am pleased to begin the year with this milestone.”
The Managing Director expressed his profound appreciation to both internal and external stakeholders for their commitment and steadfastness in ensuring the success of the recertification audit.
The ISO/IEC 27001:2013 certification is conducted by BSI every three years and in between, a yearly surveillance audit is done. The next recertification audit comes up in 2022.