Burgan Bank announced today that it has recently completed the Payment Card Data Security Standard (PCI DSS) compliance. The bank is the first in Kuwait to complete the PCI DSS version 2.0 certification, which is obtained from the global PCI Security Standards Council , and reflects the high levels of security Burgan Bank’s customers receive.
The new certification affirms Burgan Bank’s adherence to international security standards which aim at protecting banking cards’ information while recognizing data security methods that the bank applies to protect and safeguard customer information as well as preventing credit card fraud.
Burgan Bank’s PCI Data Security Standard compliance was audited by ControlCase, a specialized auditor that is approved by the PCI Standards council.
Mr. Adrian Gostuski Group Chief Operations Officer at Burgan Bank said: “We are proud to have achieved the coveted PCI Data Security Standard Compliance. This new milestone is a significant initiative that further emphasizes the bank’s overall strategy of providing the highest security measures to protect and safeguard confidential customer information.”
“The certification confirms the quality and efficiency of the bank’s information security system, which includes security policies, procedures, standards, as well as updated technologies that are implemented in the bank. As the card payment landscape continues to evolve, information protection, risk mitigation, security and control remain the ultimate concern, which is why Burgan Bank continues to heavily invest in developing its information and IT Risk management practices,” Mr. Gostuski added.
The information security management system at Burgan Bank is already in compliance with ISO 27001 standard for Information Security and the bank currently holds the ISO 27001 certification for its IT and Information Security function.
PCI DSS version 2.0 is the most comprehensive information security standard that has been designed to help organizations protect customers’ banking card data. It includes requirements for security management, risk management, policy, and procedures secure network architecture, secure software design and development, incident management as well as other critical protection requirements. The standard is endorsed by global payment brands that include Visa Inc, MasterCard Worldwide, American Express, Discover Financial Services and JCB International.