Fresh from being adjudged Ghana’s leading FinTech company at the 2018 edition of the prestigious Ghana Club 100 Awards, IT Consortium has been ISO/IEC 27001:2013 certified; thus, becoming the first FinTech company in the country to receive this certification.
This certification further consolidates the company’s position as a market leader within the local FinTech space.
The ISO 27001 is an international standard, recognised globally for managing risks to the security of information an organisation possesses.
This certification provides a set of standardised requirements for an Information Security Management System (ISMS) and enables an organisation to effectively manage risks to information security, as well as protect the information of clients and employees.
At a brief presentation ceremony, Eric Odae – a certified Auditor with the Professional Evaluation and Certification Board (PECB) – was confident that IT Consortium will be a good example of a company that has gone through the certification and thrived.
He further encouraged the management of company to continuously invest more in their operations, in his words: “So that we can have the Silicon-Valleys we are looking forward to having in Ghana”. Ato Yawson, IT Consortium’s Chief Information Security Officer, indicated that keeping up to date with all the necessary compliance standards is a top priority for the organisation.
“We needed to find out if our processes were robust by clearly defining all aspects of our business operations – right from physical security checks to top-level information security. We had to also identify associated risks and then look at how to mitigate those risks – either by minimising or managing them.
“This process has taken us over two years to complete. This certification further enhances our credibility following our PCI-DSS certification,” he explained. IT Consortium’s CEO, Romeo Bugyei, expressed excitement about the value that the certification brings to the business.
“As a financial technology company, you want to make sure your processes are solid and reliable. It is not just what you say, but what recognised international standards authorities say about you.
“With our planned expansion beyond Ghana on the horizon, the ISO/IEC 27001:2013 certification is one of the ways to assure stakeholders that we are truly world-class. The certification is in itself also a validation of the high standards we hold ourselves to internally.”
IT Consortium’s ISO/IEC 27001:2013 certification was implemented by ISMS management consulting firm, Innovare.