Co-operative Bank Attains ISO/IEC 27001:2022 Certification

No photo availableCIO Africa authorByKevin Namunwa
2 min read
Co-operative Bank of Kenya has achieved the updated global benchmark for information security management systems, after successfully transitioning to ISO/IEC 27001:2022 standard.
Ilias Karampoikis, Regional Director, BSI, and Darlene Cueto-de Visscher, Key Account Manager – BSI, present the ISO 27001:2022 Certificate to Charles Washika, Director ICT & Innovations Division, and James Kaburu, Chief Risk Officer, Co-operative Bank, during the handover ceremony at Co-op House.
Ilias Karampoikis, Regional Director, BSI, and Darlene Cueto-de Visscher, Key Account Manager – BSI, present the ISO 27001:2022 Certificate to Charles Washika, Director ICT & Innovations Division, and James Kaburu, Chief Risk Officer, Co-operative Bank, during the handover ceremony at Co-op House.

Co-operative Bank of Kenya has achieved the updated global benchmark for information security management systems, after successfully transitioning to the updated ISO/IEC 27001:2022 standard.

The certification followed an extensive external audit that evaluated critical security areas including Physical security measures, access control systems, risk management protocols, change management processes, business continuity planning, and security best practices in software development.

Speaking on this certification, Charles Washika, Director ICT & Innovations at Co-operative Bank of Kenya, and  the CIO of the Year 2023, said that it demonstrates Co-operative Bank’s commitment to protecting customer information through world-class information security standards.

“This milestone has enhanced our risk management, standardised information security policies organisation-wide, and strengthened our incident response capabilities. The comprehensive controls we’ve implemented ensure regulatory compliance while reinforcing the trust our customers, partners, and regulators place in Co-operative Bank,” said Washika.

Co-operative Bank made history in 2014 as the first bank in East Africa to achieve ISO/IEC 27001:2013 certification. The updated standard provides a holistic approach to address modern threats, vulnerabilities, and impacts while ensuring the confidentiality, integrity, and availability of sensitive data.

The certification directly benefits Co-operative Bank’s customers by ensuring their personal and financial data is processed and stored using internationally recognised security protocols. The bank’s robust Information Security Management System minimizes the risk of data privacy breaches while supporting secure digital banking services.

“Over the past decade since our initial ISO certification, we have continuously invested in strengthening our information security capabilities. In response to evolving cyber threats, we’ve scaled up our investments by acquiring cutting-edge security tools, hiring qualified cybersecurity experts, and implementing new systems to address all 93 ISO/IEC 27001 controls. This sustained commitment ensures our customers benefit from the most advanced security infrastructure in the region,” added Washika.

The achievement aligns with Kenya’s broader financial sector digitisation goals and complements the bank’s compliance with Central Bank of Kenya regulations.

Co-operative Bank remains dedicated to maintaining and continuously enhancing its information security standards. The bank’s investment in achieving this updated certification reflects its long-term commitment to protecting customer information and supporting Kenya’s digital economy growth.

Leave a Reply

Your email address will not be published.

Do you have a story that you think would interest our readers? Write to us editorial@cioafrica.co