Latest news with #27001
Express Tribune
22-06-2025
- Business
- Express Tribune
Banking institute, cyber firm collaborate on security
As per Accenture's report in 2023, cyber-resilient CEOs are already seeing healthier financials with security investments – 16% on incremental revenue growth and 21% on cost control measures. photo: file Listen to article The National Institute of Banking and Finance-Pakistan (NIBAF) and Risk Associates have formalised a landmark partnership through the signing of a memorandum of understanding (MoU), aimed at strengthening cybersecurity and compliance readiness of the financial sector. The agreement was signed by Lubna Farooq Malik, Co-CEO of NIBAF-Pakistan and Dr Aftab Rizvi, CEO of Risk Associates. The MoU establishes a strategic framework through which both institutions will collaborate to develop and deliver advanced training programmes, advisory services and capacity-building initiatives focused on cyber risk, governance, digital forensics and compliance with international standards including the PCI DSS and ISO/IEC 27001. Lubna Malik, while emphasising the critical significance of cyber risk for the financial industry, observed that the financial industry stands at the forefront of profound digital transformation and, consequently, must also be at the very forefront of protecting itself. In this context, she highlighted that the collaboration between NIBAF and Risk Associates would benefit industry professionals, especially in the banking sector, by enhancing their cybersecurity skills and knowledge through capacity building. Risk Associates CEO Dr Aftab Rizvi remarked that static defences are no longer enough in today's regulatory climate. Through this partnership, both sides aim to embed technically rigorous frameworks.
Business Recorder
21-06-2025
- Business
- Business Recorder
NIBAF, Risk Associates sign MoU
KARACHI: National Institute of Banking and Finance-Pakistan (NIBAF Pakistan) and Risk Associates have formalised a landmark partnership on Saturday through signing of a Memorandum of Understanding (MoU), aimed at strengthening the cybersecurity and compliance readiness of the financial sector in Pakistan. The signing ceremony was held at the Risk Associates regional office in Karachi. The agreement was signed by Lubna Farooq Malik, Co-CEO of NIBAF-Pakistan and Dr Aftab Rizvi, CEO of Risk Associates, in the presence of senior leadership from both organisations. The MoU establishes a strategic framework through which both institutions will collaborate to develop and deliver advanced training programs, advisory services, and capacity-building initiatives focused on cyber risk, governance, digital forensics, and compliance with international standards including PCI DSS and ISO/ IEC 27001. Lubna Malik while emphasizing the critical significance of cyber risk for the financial industry observed that the financial industry stands at the forefront of profound digital transformation and, consequently, must also be at the very forefront of protecting itself. In this context, she highlighted that the collaboration between NIBAF and Risk Associates would benefit industry professionals, especially in the banking sector, by enhancing their cybersecurity skills and knowledge through capacity building. Dr Aftab Rizvi: 'Together with NIBAF-Pakistan, we are delivering forward-looking training that empowers banking professionals to anticipate, adapt, and respond to dynamic threats with operational precision and confidence.' Copyright Business Recorder, 2025
Business Wire
18-06-2025
- Business
- Business Wire
Wasabi Technologies Achieves ISO/IEC 27001 Certification
BOSTON--(BUSINESS WIRE)-- Wasabi Technologies, the hot cloud storage company, today announced its achievement of ISO/IEC 27001 certification - the global standard for information security management systems. This milestone reinforces Wasabi's position as the trusted choice for enterprises demanding uncompromising data protection alongside breakthrough performance and cost efficiency. As data breaches cost organizations an average of $4.88 million globally according to IBM, Wasabi's certification provides CISOs and IT leaders with the assurance they need to accelerate cloud migration strategies without compromising security posture. The internationally recognized ISO/IEC 27001 certification ensures Wasabi's security architecture is robust and protects petabytes of mission-critical data across healthcare, education, government, financial services and media sectors globally. 'ISO/IEC 27001 isn't just a check-the-box exercise for Wasabi. It's about proactively helping our customers navigate a difficult cyber threat and compliance landscape,' said David Friend, co-founder and CEO of Wasabi Technologies. 'While other cloud providers force customers to choose between security, performance, and affordability, we deliver all three without compromise. This certification complements our data center operators' existing ISO 27001 certifications, meaning our customers benefit from a fully certified storage stack from infrastructure to application layer.' Why This Matters for Public and Private Sector Organizations Wasabi's ISO 27001 certification provides peace of mind for IT security leaders concerned with securing sensitive data: Regulatory compliance made simple: Automatic alignment with a global regulatory framework. Risk mitigation: Comprehensive threat detection and response protocols that protect against evolving cyber threats. Audit readiness: Built-in documentation and monitoring that streamlines compliance reporting Zero-Trust Architecture: Advanced encryption and access controls that secure data at rest and in transit. Beyond certification: Wasabi's immutable storage and multi-user authentication guard against ransomware threats. About Wasabi Technologies Recognized as one of the technology industry's fastest growing companies, Wasabi is on a mission to store the world's data by making cloud storage affordable, predictable and secure. With Wasabi, visionary companies gain the freedom to use their data whenever they like without being hit with unpredictable fees or vendor lock-in. Instead, they're free to build best-of-breed solutions with the industry's fastest-growing ecosystem of independent cloud application partners. Customers and partners all over the world trust Wasabi to help them put their data to work so they can unlock their full potential. Visit to learn more.
Observer
17-06-2025
- Business
- Observer
New personal data protection guidelines mandated for auditors
MUSCAT, JUNE 17 The Ministry of Transport, Communications and Information Technology (MoTCIT) has unveiled new standards and requirements for the accreditation of external personal data auditors in the Sultanate of Oman. The document, issued in April of 2025, aims to' establish clear standards for the accreditation of external auditors to ensure high-quality, ethical, and lawful data audit services in Oman.' 'In light of the increasing challenges of personal data protection in the digital age, the importance of ensuring private sector institutions' compliance with relevant laws and regulations grows,' the Ministry said in the document. This document provides the necessary technical and administrative standards for accrediting external auditors to ensure they possess the qualifications, methodology, and resources required to deliver high-quality and reliable audit services. This ensures their ability to conduct compliance audits for institutions (controllers and processors) to verify that personal data processing procedures are in accordance with the provisions of the Personal Data Protection Law and its executive regulations,' the Ministry added. In order to qualify as external auditors, companies must adhere to several administrative, security and compliance, and quality assurance requirements. In regards to administrative and technical standards, auditors are required to have an active commercial registration for no less than 12 months and possess the necessary licenses to operate in the Sultanate of Oman. In addition to holding essential certifications including ISO/IEC 27001 for Information Security Management and ISO/IEC 27701 for Privacy Information Management. Furthermore, external auditing companies must have a qualified technical team with practical experience and recognized certifications such as ISO 27000 Lead Auditor or CISA, and CIPP. In addition to previous auditing experience, with a demonstrated and credible track record in providing auditing services. Moreover, companies must maintain comprehensive documentation of procedures covering all audit phases (planning, execution, and reporting) in addition to a record retention policy of audit records, activities, results, and correspondence for no less than five years. Finally, the regulations require a minimum Omanisation rate of 30% within the technical teams of companies. In regards to security and compliance, the standard requires auditors to adhere to all laws and regulations related to personal data protection. Companies must also have comprehensive Data Protection and Confidentiality Policy, which outlines how data is managed and safeguarded against unauthorized access, modification, or disclosure Furthermore, companies must have the ability to conduct risk assessment audits and security gap assessments. They are also required to maintain an incident reporting policy, which clearly outlines the procedures for reporting any security incidents that occur during the audit process. Finally, auditors are required to implement defined standards to regularly assess performance and ensure adherence to the required quality levels .
CairoScene
16-06-2025
- Business
- CairoScene
UAE-Based Yango Group to Open Flagship Data Centre Hub in Serbia
The move will ensure more reliable, low-latency service delivery across global markets. Jun 16, 2025 Dubai-headquartered Yango Group has signed a memorandum of understanding to host its servers at Serbia's state-run data centre in Kragujevac. The facility, designed to meet TIER 4 standards and equipped with ISO/IEC 27001 and PCI DSS certifications, will serve as Yango's primary infrastructure hub for its global technology ecosystem. Under a colocation model, Yango will operate within a single-tenant environment to better control latency and performance—especially during peak loads—by avoiding shared public-cloud variability. Serbia was chosen for its central location, energy cost efficiency, and favorable cooling conditions—key elements that support robust data centre operations. The Kragujevac centre will reinforce Yango's services across more than 30 countries. Since its founding in 2018, Yango has built a diverse tech portfolio including ride-hailing, maps, delivery, entertainment, adtech, AI assistants, robotics, and autonomous services. By anchoring infrastructure in Serbia, Yango is doubling down on a self-reliant, scalable strategy aimed at improving service quality, transparency, and regulatory readiness in the MENA, Latin America, Africa, and European regions.
