Virtual Pay, a leading payment solutions provider has been awarded the prestigious ISO 27001:2013 certification for its Information Security Management System (ISMS).
It was awarded the certification after an extensive audit of its internal operations looking into confidentiality, integrity and availability of corporate and personal data security systems.
“Achieving the coveted ISO/IEC 27001 certification is a huge accomplishment. We are extremely delighted to be awarded this certification following a rigorous audit undertaken by the assessment body,” Virtual Pay Executive Officer David Morema said.
This certification affirms the provider’s commitment to the highest level of data security and marks one-step further in their efforts to demonstrate the company’s transparency.
Information security is key in the payments sector as this ensures confidentiality and protection of personal information thus protecting customers for corporate and individuals from cyber-attacks and fraud.
Morema said that their priority is protecting the assets and data of their customers, partners and employees.
He added that the accreditation will help the company deliver a systematic and continuous management of information security risks proving the completeness of security controls while providing clients with additional level of assurance.
The newly acquired status will enable them to continue offering their services to their customers and aim at going beyond the industry’s standards to protect the customer.
ISO 27001, a global standard for information security, published by the international organization for standardization (ISO) and the international electro-technical commission (IEC), is the gold standard certificate in IT security.
It sets over 100 requirements that outline how to implement, monitor, maintain and continually improve ISMS within the context of the organization and its business needs.
These requirements are related to the physical security, product security, financial information, intellectual property, HR processes and management's commitment to security.
It will continue to ensure its products and processes meet or exceed the security standards and expectations of its customers, partners, employees and the broader industry.
The scope of the certification covers the ISMS supporting Virtual Pay’s human resources, information technology, software development, leadership and customer support functions.
Virtual Pay will also enhance the implementation and maintenance of controls including data encryption, vulnerability management, business continuity and disaster recovery plans.
In addition to this certification, it is also fully PCI DSS compliant.
