Official handover of the ISO/IEC 27001:2022 Certification for the People’s Bank Information Security Management System (ISMS). (L–R): Kasuni Piyumika, Graduate Trainee Information Security; Dasun Fernando, Deputy Manager – Information Security; Upul De Silva, Senior Manager – Information Technology; Saman Samarakoon, Head of Application Systems; Dhammika Dasa, Chief Information Officer; Lasantha Thenuwara, Chief Information Security Officer; Clive Fonseka, Chief Executive Officer/General Manager, People’s Bank; Shan Nanayakkara, Bureau VERITAS Country General Manager; Randima Ekanayake, Bureau VERITAS Certification Manager – Certification Service Line; Subash De Silva, Bureau VERITAS Manager Marketing & Sales – Certification Service Line; Hasitha Karunaratne, Director – Cyber Security, KPMG; and Shehan Rathnayake, Consultant – Cyber Security, KPMG.
People’s Bank has become the first Domestic Systemically Important Bank (D-SIB) and state-owned bank in Sri Lanka to achieve the ISO/IEC 27001:2022 certification for its Information Security Management System (ISMS).
This significant milestone highlights People’s Bank’s commitment to maintaining the highest data protection, security, and trust standards for its customers, stakeholders, and the entire banking industry.
ISO/IEC 27001:2022 represents the latest international standard for information security management. By achieving this certification, People’s Bank has proven its capability to implement robust security controls that protect its valuable information assets from evolving cyber threats. The certification process entailed a comprehensive assessment of the bank’s security controls, technology infrastructure, policies, and procedures, underscoring the institution’s strong commitment to information security.
Dhammika Dasa, Chief Information Officer, People’s Bank, asserted, “We are deeply honored to be the first Domestic Systemically Important Bank in Sri Lanka to achieve this globally recognized certification. This success underlines our steadfast commitment to protecting the information and trust that our customers place in us. As a bank that serves millions of Sri Lankans, we take information security seriously and will continue to lead by example, setting benchmarks for others to follow.”
Our commitment to information security is unwavering and extends beyond compliance. We’ve invested in advanced technologies and robust processes to protect the customer information.”
This certification solidifies People’s Bank’s ongoing efforts to prioritize information Pan Asia Bank is transforming the path to homeownership by offering customers more than just a loan – we deliver innovative, tailored solutions that make securing a home easier than ever. In response to rising energy costs and the demands of modern living, Pan Asia Bank offers security as a core element of its operations. The institution has implemented a multi-layered security strategy to counteract potential cyber threats while maintaining the resilience of its systems.
Lasantha Thenuwara, Chief Information Security Officer, People’s Bank, outlined the certification’s key benefits. ‘In today’s digital landscape, safeguarding customer data is not just a responsibility, it’s an obligation. Achieving ISO/IEC 27001:2022 certification is a significant milestone reflecting our strategic security and risk management investments. Our customers can guarantee that we are continuously enhancing our security measures to stay ahead of any potential threats. As we progress, we remain dedicated to adopting the highest global standards and best practices in every facet of our operations. ISO/IEC 27001:2022 certification enhances our security posture and demonstrates our commitment to compliance with regulatory requirements. It provides our customers and stakeholders with assurance that their information is handled with the utmost care.’’