Baiduri Bank bags data security recertification

Lyna Mohamad

Baiduri Bank reaffirmed its commitment to ensuring its customer data is protected to the highest standard when it was recertified to the latest Payment Card Industry Data Security Standard (PCI-DSS) V3.2.1 for the seventh year consecutively.

The PCI-DSS Standard covers several aspects related to protecting customer confidentiality and data including the handling of data by the bank’s systems, guarding against theft of data as well as Internet-based intrusions.

Baiduri Bank Chief Technology Officer Simon Hansman said, “Privacy protection and data security are areas that the bank attaches great importance to. The PCI-DSS certification represents an important milestone for data security in Baiduri’s day-to-day operations.”

Baiduri Bank CEO Ti Eng Hui said, “The bank was first certified PCI-DSS compliant in 2014 with V2.0. Throughout the years, we have strengthened our data security technology and capabilities to provide customers with the highest quality of service with the highest industry data security standard.

“This certification is a testament to our commitment in putting our customers’ data and protection as our utmost priority.”

Baiduri Bank Chief Executive Officer Ti Eng Hui (C), Chief Technology Officer Simon Hansman (2nd left) and Baiduri Bank’s Group Information and Technology Division members in a group photo. PHOTO: BAIDURI BANK

The PCI-DSS is used by all major card brands as the common security standard for its compliance programmes and the PCI-DSS

Version 3.2.1 is the latest and most current standard consisting of steps that mirror best
security practices.

It includes building and maintaining a secure network and systems, protecting cardholder data, maintain a vulnerability management programme, implementing strong access control measures, regular monitoring and testing of the network and maintaining an information security policy.

The standard has been endorsed by major card brands – Visa, Mastercard, Discover Network, American Express and JCB – to safeguard customer information and mandates that merchants and service providers meet and maintain stringent security standards when they process and transmit cardholder data.