Misr Digital Innovation has successfully attained the Payment Card Industry Data Security Standard (PCI DSS) Certification
Misr Digital Innovation (MDI), a subsidiary of Banque Misr and the company responsible for building Egypt's first digital bank, is proud to announce that it has successfully attained the Payment Card Industry Data Security Standard (PCI DSS) Certification in collaboration with IGRC SQUARE, an accredited Qualified Security Assessor (QSA).
This achievement not only establishes MDI as a globally recognized entity by obtaining the PCI DSS certification, but also makes it the first in the market to be certified under the latest version, v4.0.1. This version offers enhanced flexibility, clearer requirements, and a stronger focus on security, risk management, and monitoring, aligning with modern cybersecurity practices and promoting a proactive, risk-based approach to data protection.
The PCI DSS outlines stringent security requirements to protect environments where cardholder data (CHD) is stored, processed, or transmitted. It serves as a benchmark of technical and operational standards designed to safeguard payment account data. This certification enhances MDI's cybersecurity stance and reinforces customer trust by ensuring the highest level of data protection.
Sherif Elbehery, CEO of MDI, remarked on this: 'This achievement represents a significant milestone for our organization. It underscores our unwavering commitment to maintaining the highest standards of security and compliance while further solidifying our position in the Central Bank of Egypt's regulatory file submissions. With IGRC SQUARE's unwavering support throughout the entire process, this certification marks the first global recognition of our bank.'
Mohamed Helmi, Chief Information Security Officer at MDI, added:
'Achieving the PCI DSS certification enhances our ability to gain the trust of customers, partners, and all relevant parties by providing the highest standards of security and privacy protection. We went through a comprehensive and meticulous process, starting with planning and gap analysis, followed by the implementation of security controls and system testing to ensure compliance, all the way through to the official audit and documentation process."
As the key partner in this certification journey, Adel Higazy, CEO of IGRC SQUARE, commented:
'Our mission as a leading cybersecurity solutions provider is to support organizations in protecting their data and devices with best-in-class security systems, empowering organizations of all sizes to confidently navigate the complex and ever-evolving cybersecurity landscape, safeguarding their critical data and systems from growing threats. This milestone is particularly significant as it positions MDI to gain the trust and confidence of its customers during this transformative phase. We are honored to be part of this landmark achievement for MDI.'
The PCI DSS certification is a cornerstone of the Information security risk management strategy for financial institutions, banks, and cybersecurity technology and service providers. It not only secures sensitive data but also reinforces operational integrity and strengthens competitive positioning in an increasingly regulated and technology-driven industry.
About Misr Digital Innovation:
Misr Digital Innovation (MDI) was established in 2020 with the vision of building Egypt's first fully native digital bank. Leveraging advanced technologies and innovative solutions, MDI is committed to transforming the banking experience by offering seamless, secure, and accessible digital financial services. By combining deep expertise in banking with state-of-the-art digital solutions, MDI is leading the charge in redefining the future of banking in Egypt, making financial services more efficient, transparent, and customer-centric. As part of Egypt's strategic commitment to digital transformation, MDI aims to drive financial inclusion and empower customers through a fully integrated digital ecosystem.
About IGRC SQUARE:
IGRC SQUARE is a leader in risk, compliance, and privacy solutions, specializing in PCI DSS, PCI 3DS, PCI PIN, ISO 27001, and data privacy frameworks. With unmatched expertise, IGRC SQUARE empowers organizations to secure payment ecosystems, safeguard sensitive information, and achieve regulatory excellence. Their innovative, tailored approaches ensure seamless compliance, robust security, and operational resilience. Trusted by enterprises worldwide, IGRC SQUARE is committed to advancing governance, risk, compliance, and privacy standards across industries.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Zawya
12-03-2025
- Zawya
Misr Digital Innovation has successfully attained the Payment Card Industry Data Security Standard (PCI DSS) Certification
Misr Digital Innovation (MDI), a subsidiary of Banque Misr and the company responsible for building Egypt's first digital bank, is proud to announce that it has successfully attained the Payment Card Industry Data Security Standard (PCI DSS) Certification in collaboration with IGRC SQUARE, an accredited Qualified Security Assessor (QSA). This achievement not only establishes MDI as a globally recognized entity by obtaining the PCI DSS certification, but also makes it the first in the market to be certified under the latest version, v4.0.1. This version offers enhanced flexibility, clearer requirements, and a stronger focus on security, risk management, and monitoring, aligning with modern cybersecurity practices and promoting a proactive, risk-based approach to data protection. The PCI DSS outlines stringent security requirements to protect environments where cardholder data (CHD) is stored, processed, or transmitted. It serves as a benchmark of technical and operational standards designed to safeguard payment account data. This certification enhances MDI's cybersecurity stance and reinforces customer trust by ensuring the highest level of data protection. Sherif Elbehery, CEO of MDI, remarked on this: 'This achievement represents a significant milestone for our organization. It underscores our unwavering commitment to maintaining the highest standards of security and compliance while further solidifying our position in the Central Bank of Egypt's regulatory file submissions. With IGRC SQUARE's unwavering support throughout the entire process, this certification marks the first global recognition of our bank.' Mohamed Helmi, Chief Information Security Officer at MDI, added: 'Achieving the PCI DSS certification enhances our ability to gain the trust of customers, partners, and all relevant parties by providing the highest standards of security and privacy protection. We went through a comprehensive and meticulous process, starting with planning and gap analysis, followed by the implementation of security controls and system testing to ensure compliance, all the way through to the official audit and documentation process." As the key partner in this certification journey, Adel Higazy, CEO of IGRC SQUARE, commented: 'Our mission as a leading cybersecurity solutions provider is to support organizations in protecting their data and devices with best-in-class security systems, empowering organizations of all sizes to confidently navigate the complex and ever-evolving cybersecurity landscape, safeguarding their critical data and systems from growing threats. This milestone is particularly significant as it positions MDI to gain the trust and confidence of its customers during this transformative phase. We are honored to be part of this landmark achievement for MDI.' The PCI DSS certification is a cornerstone of the Information security risk management strategy for financial institutions, banks, and cybersecurity technology and service providers. It not only secures sensitive data but also reinforces operational integrity and strengthens competitive positioning in an increasingly regulated and technology-driven industry. About Misr Digital Innovation: Misr Digital Innovation (MDI) was established in 2020 with the vision of building Egypt's first fully native digital bank. Leveraging advanced technologies and innovative solutions, MDI is committed to transforming the banking experience by offering seamless, secure, and accessible digital financial services. By combining deep expertise in banking with state-of-the-art digital solutions, MDI is leading the charge in redefining the future of banking in Egypt, making financial services more efficient, transparent, and customer-centric. As part of Egypt's strategic commitment to digital transformation, MDI aims to drive financial inclusion and empower customers through a fully integrated digital ecosystem. About IGRC SQUARE: IGRC SQUARE is a leader in risk, compliance, and privacy solutions, specializing in PCI DSS, PCI 3DS, PCI PIN, ISO 27001, and data privacy frameworks. With unmatched expertise, IGRC SQUARE empowers organizations to secure payment ecosystems, safeguard sensitive information, and achieve regulatory excellence. Their innovative, tailored approaches ensure seamless compliance, robust security, and operational resilience. Trusted by enterprises worldwide, IGRC SQUARE is committed to advancing governance, risk, compliance, and privacy standards across industries.
Zawya
06-03-2025
- Zawya
How new PCI Standards will change online security for retailers?
In order to comply with future-dated PCI-DSS compliance requirements, merchants must implement a series of new security measures. The new requirements come into effect now, March 2025, and will help to protect consumers and retailers against online fraud. As e-commerce has grown, so too has the number of bad actors looking to exploit security weaknesses to steal credit card data, also known as e-skimming. Future-dated requirements that come into effect in March 2025 will help to protect consumers and retailers alike, but online merchants must implement a series of new security measures to ensure compliance. Each year, thousands of card details are stolen in online card transactions - even on well-known and big-brand websites. Hackers are becoming increasingly sneaky, so even if a merchant's card capture form is secure, they can exploit security weaknesses elsewhere on a website and intercept sensitive data before it even reaches the merchant's secure payment form. That's why the new PCI DSS 4.0.1 safety standards require retailers to secure their entire website. Reputable payment platforms meet the highest standards of payment security, which reduces the scope of compliance efforts for retailers. However, there are still a few steps merchants need to take to ensure that their site is fully compliant. PCI what? Payment Card Industry Data Standards (PCI DSS) refers to a set of standards that retailers must comply with - no matter their size. The standards are updated from time to time, and the latest version, PCI DSS 4.0.1, has some future-dated requirements that come into effect at the end of March 2025. PCI DSS 4.0.1 enforces stricter security measures for the entire site to prevent attacks like e-skimming and to ensure secure payment processing. It is designed to enhance the security of cardholder data by adopting a comprehensive approach to security measures and access controls. This means that merchants are responsible for securing every part of the payment flow, ensuring that both the payment form and the hosting web environment are protected. PCI DSS 4.0.1 has stronger password and multi-factor authentication requirements. It also has improved security practices, with updates for e-commerce security and third party risk management. It is more flexible, with more customised approaches to compliance, and comes with improved guidance and examples. What does this mean for retailers? The new requirements oblige merchants to take a more active role in securing payment pages, and proactively monitoring for signs of compromise. In particular, there are two requirements which merchants need to act on before the end of March 2025. Firstly, merchants have to keep track of all their (software) scripts, even those from third parties. All scripts have to be authorised and merchants need to ensure that they haven't been tampered with. Testing for unauthorised scripts is mandatory. This is essential because attackers can compromise third-party scripts to steal card data directly from customers' browsers. Secondly, merchants need to monitor payment pages for unexpected changes to things like code or even the way the page is displayed in the browser. Merchants need to set up alerts to notify them of suspicious activity to detect and respond to attacks more quickly. This is important because attackers are able to modify web pages to redirect customers to fake sites, or to steal their data. PCI requirements become more rigorous depending on a merchant's transaction volumes, with levels broken down as follows: - Level 1: Over 6 million transactions per year - Level 2: 1-6 million transactions per year - Level 3: 20,000-1 million transactions per year - Level 4: Fewer than 20,000 transactions per year Next steps for retailers Think of your website security the same way you would your home security. Each time you leave your house, you lock the doors and close the windows, and probably set an alarm system. Ensuring your website is PCI DSS 4.0.1 compliant essentially locks the doors and windows on your website, and guards against e-skimming. It's imperative that you comply to protect your customers and your business. Some helpful next steps: - Determine your compliance level: Your PCI DSS scope (the extent to which you need to comply with the standard) is determined by how you handle cardholder data. - Understand the requirements by reviewing the PCI DSS v 4.0.1 (Available for download through the PCI Security Standards Council.) - Assess your current security level by identifying gaps and areas for improvement - Implement necessary security controls based on your chosen integration method. - Document your compliance efforts, which requires you to maintain records of policies, procedures, and assessments. - Regularly monitor and maintain compliance For some retailers, this may all seem quite foreign. The first step is to speak to your webmaster about what needs to be done. All rights reserved. © 2022. Provided by SyndiGate Media Inc. (
Campaign ME
28-02-2025
- Campaign ME
Ramadan marketing on LinkedIn – what you need to know
Ramadan is about to start, and every year marketers get the same question: Should we adjust our LinkedIn strategy? The short answer? Yes. But not in the way you might think. Some brands hesitate to post on LinkedIn during Ramadan, unsure of what works. But engagement actually soars during this time. If done right. The key is to show up with intention, be human, and foster real relationships. It's not about pushing services. It's about human content, community and connection. Why does LinkedIn engagement spike during Ramadan? LinkedIn's data shows that brands in MENA are becoming more active during Ramadan, with a 15 per cent increase in company posts compared to the previous year. And audiences? They're responding: 32 million total engagements with Ramadan posts in MENA (2024) 39 per cent increase in engagement compared to 2023 68 million unique members engaging with Ramadan content Community-driven content outperforms sales-driven posts—by a wide margin What does this tell us? Ramadan isn't a time to go silent. It's a golden opportunity for building an authentic presence and brand awareness. What kind of content works during Ramadan? I once worked with a CEO who hesitated to post during Ramadan, worried it would feel out of place. But after sharing a simple, personal reflection on what the month meant to him, his post became one of his most engaging of the year. Why? Because Ramadan is a time for authenticity. People respond to real, human stories. The brands that win during Ramadan don't push sales. They lean into storytelling, generosity, and human connection. Here are two standout examples: 1. Misr Digital Innovation (MDI) – Giving Back Instead of posting about their products, MDI showcased their team packing food donations. The result? Genuine engagement and stronger brand affinity. 2. Namshi X New Balance – Community-Driven Iftar Namshi and New Balance hosted a vibrant iftar event, capturing real moments of togetherness. The takeaway is that experiences drive engagement. People resonate with brands that celebrate with them—not just talk at them. Real goal of Ramadan marketing on LinkedIn? When Ramadan ends, the conversations shouldn't. The brands that focused on connection during the month continue to see engagement long after. Ramadan isn't about quick wins. It's about long-term brand trust. So, if you're expecting immediate ROI, Ramadan might not be the time. But if your goal is to create a lasting impact, build genuine trust, and reinforce what your brand stands for, this is your moment. Show up. Add value. Be remembered. By Svenja Maltzahn, Founder of Sumea Social
