OREANDA-NEWS. On 11 January 2008 was announced, that JSC BТА Bank had successfully passed a post-certification audit which reconfirms BTA’s compliance with the ISO Standard 27001. BTA was the first of Kazakh banks to successfully complete the implementation of an Information Security Management System (ISMS) compliant with ISO 27001, which was developed by the British Standards Institute (BSI).

The ISMS covers BTA-Online, the bank’s remote corporate banking services system. As a result of the recertification, BTA-Online has been internationally recognised as a product with the highest level of protection.

The ISO/IEC 27001:2005 certificate will build even more confidence in BTA Bank’s ability to protect information entrusted to it on the part of BTA investors and borrowers alike, since the ISMS eliminates the risk that information security will be compromised.

ISO/IEC 27001:2005 specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented ISMS. It is the only standard suitable for an international ISMS certification.

The development and implementation of an ISO 27001-compliant ISMS is an important part of the bank’s IT strategy and, in a more general way, BTA’s strategy of turning itself into a major international financial group.

BTA Bank’s ISMS was designed and implemented by the Russian information security provider InformZaschita.