Gulf Bank obtains top security certification
Kuwait, August 10, 2014
Gulf Bank has announced that it has officially obtained the Payment Card Industry (PCI)-Data Security Standards (DSS) 3.0 certification, making it the first certified bank in Kuwait to achieve the standard.
PCI-DSS is the global industry standard for compliance and security for personal payment card data, to which vendors and businesses must conform to in order to protect cardholders’ personal data and prevention from credit card fraud, a statement said.
The bank’s PCI-DSS 3.0 compliance was validated on May 20, 2014, after an extensive audit conducted by SISA, a qualified security assessor from PCI Security Standards Council. Vendors and businesses were given a deadline of January 1, 2015 to apply the newest standards.
Himanshu Tewari, head of ISS and PIO at Gulf Bank, said: "The bank's accomplishment reinforces its commitment to internationally recognised security standards that enhance the protection of customers' card information. Gulf Bank’s attainment of PCI - DSS 3.0 compliance is in line with its client centric approach. For Gulf Bank getting PCI DSS certification is more than checking a box on an annual audit, it reflects the bank’s values to constantly operate with its clients’ best interest at heart, and protect and avoid misuse of customer data."
The bank met the six different security pillars required to achieve the PCI-DSS 3.0 compliance. These requirements are namely; building and maintaining a secure network, protecting cardholder data, maintaining a vulnerability management program, implementing strong access control measures, regularly monitoring and testing of networks and last but not least, maintaining an information security policy, said a statement. – TradeArabia News Service