OREANDA-NEWS.  July 01, 2014. "Unibank" has started the procedure of ISO 27001:2013 standards implementation in order to develop and enhance the effectiveness of information security (IS) management.

Getting ISO 27001 certificate will enable the Bank to rationalize its information security system, enhance the processing effectiveness and protection level of the customers’ personal data, enhance the managerial control, increase the employees qualifications. Project is certified with the support of French "Bureau Veritas" company, which is one of the world leaders in providing certification services.

The company specializes in the fields of certification, industrial audit, technical inspection and supervision, testing the compliance to quality standards, security and work protection.

As regional manager of "Bureau Veritas" Stepan Barakian has remarked, “Unibank” has already successfully passed the diagnostic audit, which is necessary for the implementation of information security management system.

IS matters have always been in the center of attention of “Unibank”. Implementation of ISO 27001:2013 standards is another step to the enhancement of effectiveness and performance of the Bank’s information security system management and security processes.

“Information security management system is based upon the management of business risks for enhancement, monitoring, analysis of information security, as well as is designed to aid the international recognition both in the internal and on the external markets, - says director of “Unibank” IS department Lusine Simonyan, - The product will enable to inscribe information security management in all business processes, which is in accord with the Bank’s priorities.”

“Unibank” activities are directed at ensuring information security on all the stages of the customer service. Concerning the latter, the Bank has already passed certification audit on compliance with the PCI DSS (PCI Data security standard) international standard requirements. PCI DSS is the leading standard in the field of data security, developed by the international payment systems in order to protect the transactions done with payment cards. Compliance with the standard confirms the high level of security of cardholders’ data processing and keeping. As an auditor “Digital Security” company was selected – one of the leading Russian companies in the field of information security.