QIB Awarded ISO 27001 Certification for Banking Information Security
Qatar Islamic Bank (QIB), the first and leading Islamic bank in Qatar and ranked amongst the worlds five largest Islamic banks, is pleased to announce that it recently received the prestigious ISO 27001:2005 certification - the world's highest accreditation for information protection and security, from the International Organization for Standardization (ISO). The certification was awarded due to QIB's possession of and compliance with high technical standards of information security, operations and security procedures, especially related to websites and the use of software.
The ISO 27001 is the first certification received by QIB, which places them on par with leading international banks in the space of security and protection for electronic banking and is just the start of an aggressive strategy to carry out technology implementations across the entire information infrastructure.
Mr. Salah Jaidah, CEO, QIB said, "Receiving this ISO certification ensures that the development of QIB's banking techniques and constant upgradation of information technology, which is the backbone of the bank's services and administration, becomes our strategic priority. Throughout the past three years, QIB has implemented state-of-the-art technology upgrades that has transformed the bank's IT platform into one that offers the latest generation of e-banking services, enhanced features, upgraded global networking and high-performance connectivity among branches".
Mr. Hammad Al Zamli, Assistant General Manager, Operations and IT group commented, "The ISO 27001 certification is the result of establishing the Information Systems and Technology Center in 2008, which is equipped with all high-end technical specifications such as operating systems, surveillance systems, security and protection systems. All this provides high performance and capabilities with non-stop, continuous operations".
"QIB has provided the center with all the necessary equipments to protect the bank's information systems, data base and network, in addition to preventing hackers from attacking and breaching the emails. This was done in collaboration with specialized international companies that operate in this sector," he added.
The receiving of the ISO 27001 certification came after a detailed risk assessment conducted by Paramount Computer Systems Doha Qatar, QIB's strategic security partner and consultant. Paramount used several advanced tests including 'hacking procedures' and 'electronic breaching attempts' to ensure that all the bank's systems and procedures relating to information security and data protection were operating at the highest standards and efficiency. It studied the ways employees accessed various sites and systems at the main technology center and the reserve center and developed and enhanced policies and procedures. Following this, the German Certification company TUV did a detailed assessment and auditing of QIB's Information Security Management Systems.
This certification is associated with the usage of information security related to electronic banking. QIB will at a later stage expand this process to cover the entire Information Technology Center.
Mr. Premchand Kurup, CEO Paramount Computer Systems said, "The ISO 27001 certification assures QIB's customers, associates and stakeholders that it now owns very high-end technical systems and an excellent IT environment that provides the highest level of banking information security as well as enhanced banking services especially in the E-banking sector. We are happy and proud to have been consultants to QIB for the ISO certification project and thank the management for their confidence in our services and expertise".
- Abu Dhabi Urban Planning Council Achieves ISO 27001 Certification for IT department
- Jafza implements best-in-class information systems, minimizing security risks
- MTC-Vodafone (Bahrain) achieves ISO/IEC27001:2005 certification
- Global recognition for Jebel Ali port’s information security management system
- Intertec Systems offers training programme on Information Security for IT managers