The National Pension Commission said it has attained ISO 27001:2013 certification for its Information Security Management System.
It said in a statement on Friday that the ISMS provided a systemic approach to effectively manage the risks associated with an organisation’s information assets by using well defined processes, technology and people.
PenCom stated, the ISMS of the National Pension Commission was designed to achieve the ISO 27001:2013 standard, which is an internationally recognised set of information security standards that govern the security of information assets such as intellectual property, financial information, employee information, as well as information entrusted by third parties.
“The standards are published by the International Organisation for Standardisation and the International Electrotechnical Commission.”
It stated that it had been evaluated by the Professional Evaluation and Certification Board in all core areas of its operations and its ISMS was certified to be in compliance with the ISO 27001:2013 Standard in all the core areas of its operations.
The statement said the certificate of compliance was issued to the commission on 8 January 2021.
As the regulator of the Nigerian pension industry and custodian of National Databank on pension matters in the country, it stated, this certification was an important demonstration of the commission’s commitment to the highest standards of confidentiality, integrity and availability of data on contributors, retirees and stakeholders in the pension industry.