The National Pension Commission’s Information Security Management System (ISMS) has been certified to be in compliance with the ISO 27001:2013 Standard in all the core areas of its operation.
The ISMS provides a systemic approach to effectively manage the risks associated with an organisation’s information assets by using well defined processes, technology and people.
The ISMS of the National Pension Commission was designed to achieve the ISO
27001:2013 Standard, which is an internationally recognized set of information
security standards that govern the security of information assets such as
intellectual property, financial information, employee information, as well as
information entrusted by third parties.
The Standards are published by the International Organisation for Standardization (ISO) and the International Electrotechnical Commission (IEC).
The Commission had been evaluated by the Professional Evaluation and
Certification Board (PECB) in all core areas of its operations and its ISMS was
certified to be in compliance with the ISO 27001:2013 Standard in all the core
areas of its operations. Accordingly, the Certificate of Compliance was issued to
the Commission on 8 January 2021.
As the regulator of the Nigerian pension industry and custodian of National
Databank on pension matters in the country, this certification is an important
demonstration of the Commission’s commitment to the highest standards of
confidentiality, integrity and availability of data on contributors, retirees and
stakeholders in the pension industry.
Hauwa Abu
