Chris Onyemenam, director-general and chief executive officer (CEO) of Nigeria’s National Identity Management Commission (NIMC) has announced the commission has received the ISO 27001 certification for information security management.
The International Organisation for Standardisation (ISO/IEC) 27001 certification is the international code of practice for Information Security Management System (ISMS) certification, and Onyemenam said it confirms that all sensitive citizens’ and clients’ information with the commission are secured and managed at the highest international
“It formally specifies a management system that brings information security under explicit management control; before an organization can adopt the ISO/IEC 27001 standard, it has to be formally audited and certified as compliant with the standard,” he said.
“To get the certification, the Commission has to ensure that all information gathered in and around the workplace was well protected; since it has become increasingly reliant on information technology systems.
“The ISO 27001 management system is for the protection of information assets from a wide range of threats in order to ensure business continuity, minimize business risk, and maximize return on investments and business opportunities.”
He said the certification also suggests demonstrable commitment to security by the organisation, legal and regulatory compliance, better risk management, commercial credibility, confidence, and assurance, reduced costs, clear employee direction and improved awareness.
“With this certification, the ISO 27001 provides the commission with the assurance of knowing that all NIMC information is protected; every reputable organisation strives for this because it helps improve the efficiency and effectiveness of any work place. The ISO 27001 certification audit is the foremost auditable information security standard subscribed to by about 150 countries globally,” Onyemenam said.