For the ninth consecutive year, Baiduri Bank demonstrated its commitment to the highest data security standard when it was recertified to Payment Card Industry Data Security Standard (PCI-DSS) V3.2.1.
The PCI-DSS Certification is an industry standard for securing credit card use.
This certification was developed by the Payment Card Industry Security Standards Council, a global forum that brings together payments industry stakeholders including Mastercard, Visa, American Express, Discover and JCB to develop and drive adoption of data security standards and resources for safe payments worldwide.
The PCI-DSS Standard covers several aspects related to protecting customer confidentiality and data such as the handling of data by the bank’s systems, guarding against theft of data as well as Internet-based intrusions among others.ControlCase is a qualified security assessor (QSA) and a global provider of Compliance, Information Security and Risk Management Solutions.
They assessed and certified Baiduri Bank as PCI-DSS V3.2.1 compliant on October 4.
Baiduri Bank Chief Executive Officer Ti Eng Hui said, “At Baiduri Bank, we have always prioritised investments in data security and protection to ensure our customers’ data is safe.
Keeping up with the highest industry data security standards such as PCI-DSS is one of such measures. We have been certified as PCI-DSS compliant since 2014, and will, as part of our ongoing commitment, continue to ensure the stringent requirements are fully embedded into our systems and processes.”
Speaking on the recertification, Baiduri Bank Head of Group Information and Technology Department Simon Hansman said, “As technology advances, providing a secure environment for the data we manage is of the utmost importance.”
He elaborated, “We are focussed on continuously improving our systems and operations to address evolving threats and challenges.
“This certification represents an important milestone for us and demonstrates the commitment of our teams in meeting and exceeding the PCI-DSS standards.”
The PCI-DSS is used by all major card brands as the common security standard for their compliance programmes.
PCI-DSS V3.2.1, the latest and most current standard consists of steps that mirror security best practices such as building and maintaining a secure network and systems, protecting cardholder data, maintaining a vulnerability management programme, implementing strong access control measures, regular monitoring and testing of the network and maintaining an information security policy.