LankaBangla Finance Limited, a growing Non-Banking Financial Institute (NBFI), was recently awarded the prominent ISO/IEC 27001:2013 certification by the British Standards Institution (BSI), an International Certification Agency.
LankaBangla Finance Limited received this certification for its adoption and application of global standards and best practices to ensure effectiveness, efficiency, confidentiality, and the integrity of its day-to-day information security operations.
The certification indicates that the working divisions and unit under the certification scope (ICT Division, HR Division, General Infrastructure and Services Division and Card Operations Unit) have complied with the international standards for security competencies relating to processes, policies, practices, and infrastructure.
This certification entails that the organization has met all requirements with strong confidence regarding information security management, becoming the first NBFI in Bangladesh to be certified by the BSI.
It is to be noted here that Enterprise Infosec Consultants (EIC) has performed all consultancy-related responsibilities.
Speaking on the occasion, Khwaja Shahriar, managing director and CEO of LankaBangla said, "I am delighted to announce our attainment of the ISO 27001 certification. This is a substantial and exceptionally important accomplishment."
"Security is an essential part of our business and we take this obligation to meet these very high standards seriously; achieving accreditation validates the seriousness with which we treat our clients' sensitive assets" he added.
Shahriar further said, "This certification confirms that our organization exercises the best practices in information security processes and has ensured the fundamentals of data security, which are Confidentiality, Integrity and Availability. Processes are now better aligned than before to the organization's strategy and purpose".
"We are pleased that LankaBangla Finance Limited is the first NBFI in Bangladesh that is ISO/IEC 27001:2013 certified by the British Standards Institution (BSI). It shows our organization's readiness to provide innovative products and cater to the needs of our customers with utmost security", he stated.
This certification is also a mandatory requirement of Bangladesh Bank; and LankaBangla Finance Limited is committed to following regulatory instructions to ensure compliance.
ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization.