SECP successfully completes ISO/IEC 27001:2013 certification
ISLAMABAD: The Securities and Exchange Commission of Pakistan (SECP) has successfully completed the phase one scope and audit of security standard certification ISO/IEC 27001:2013 for its Information Security Management System (ISMS).
The one of widely accepted and globally recognized certification enables organizations to identify, prevent and defend potential security vulnerabilities, said a press release.
The ISO/IEC 27001:2013, awarded by the International Organization for Standardization encompasses the requirements for establishing, implementing, maintaining the Information technology security techniques.
This certification will help organizations to keep confidential information secure, provides customers and stakeholders with confidence in how you manage risk and allows for secure exchange of information and provide you with a competitive advantage.
Obtaining this certification demonstrates SECP’s strong commitment to the ongoing development and continuous improvement of its enterprise ISMS, making information security and data protection an integral part of all its business processes.
SECP Chairman Aamir Khan said, “We are proud to have earned this certification, attesting that our highest level of controls is in place when handling SECP’s and it regulates information. The SECP has even established a governance programme that includes the Information Security – Governance, Risk Management and Compliance Council (IS- GRCC) whose job is to support the ongoing information and cyber security enhancements. With ISO 27001 ISMS Certification, we are effectively meeting the industry benchmark towards complying with information and cyber security standards.” - APP