International Organisation for Standardisation – ISO/ International Electrotechnical Commission- IEC 27001:2002 is an internationally recognised standard.
The market regulator informed that two of its information security systems and two of its operations controls have been certified to have met an internationally recognised standard, for cyber resilience and operational excellence.
The Securities and Exchange Board of India (Sebi) informed this through a press release issued on April 4.
The regulator stated, “This certification underscores SEBI’s commitment to continuous improvement and enhancement of its systems and controls to achieve Confidentiality, Integrity, and Availability (CIA) of data and operations.”
Also read: Defect rate in securities markets has halved since T+1: Sebi’s Madhabi Puri Buch
SEBI has successfully obtained the ISO/IEC 27001:2022 certification for Information Security Management System at the Primary Data Centre; Security Operations Control (SOC) and Network Operations Control (NOC) Operations; and Information Security Management System at the Disaster Recovery site.
International Organization for Standardization – ISO/ International Electrotechnical Commission- IEC 27001:2002 is an internationally recognised standard for ISMS that enables organisations to identify, prevent, and defend potential security vulnerabilities, said the press release.
The ISO website describes ISO/IEC 27001 as a standard that “promotes a holistic approach to information security: vetting people, policies and technology. An information security management system implemented according to this standard is a tool for risk management, cyber resilience and operational excellence”.
Also read: Having pendency is good but ageing of public issues is bad, says Madhabi Puri Buch
Story continues below Advertisement
“As part of its continuous commitment to set benchmarks for cyber security standards in the Indian Securities Market, it was decided to obtain ISO/IEC 27001:2022 certification by ensuring that SEBI’s information technology systems meet the standards of a comprehensive evaluation and audit process undertaken by the certification body accredited by NABCB,” said the press release.
This post was originally published on 3rd party site mentioned in the title of this site
