Co-operative Bank of Kenya has announced a significant milestone with its successful transition to the updated ISO/IEC 27001:2022 certification, awarded by the British Standards Institution (BSI). This achievement marks another step in the bank’s long-standing commitment to maintaining the highest standards of information security. Notably, Co-operative Bank was the first in East Africa to secure the ISO/IEC 27001:2013 certification back in 2014, underscoring its leadership in cybersecurity and risk management.
The ISO/IEC 27001 standard is globally recognized as the most trusted framework for establishing and managing robust information security management systems (ISMS). The 2022 update introduced enhanced measures to address modern cybersecurity challenges, including cloud operations, digital transformation, and sophisticated cyber threats. By attaining this certification, Co-operative Bank has demonstrated its adaptability and preparedness to safeguard against today’s evolving digital risks.
According to Co-operative Bank’s Director of ICT & Innovations, Charles Washika, the certification reflects the bank’s sustained investment in protecting customer data and securing its systems. He highlighted how this milestone has strengthened the bank’s risk management framework, standardized information security policies across the organization, and enhanced incident response capabilities to mitigate potential threats.
The comprehensive audit conducted for the certification covered key security domains such as physical infrastructure safeguards, access controls, risk management protocols, change management processes, business continuity planning, and secure software development practices. These measures assure customers, regulators, and partners that the bank continues to uphold the most rigorous global standards in data protection and cybersecurity.
BSI’s IMETA Sales and Commercial Director, Ilias Karampoikis, emphasized that Co-operative Bank’s achievement demonstrates its forward-looking approach to cybersecurity. He noted that the certification signals the bank’s readiness to confront digital risks with globally recognized best practices, thereby reinforcing trust among its stakeholders and ensuring continued resilience in an increasingly digital financial ecosystem.
By securing the ISO/IEC 27001:2022 certification, Co-operative Bank has once again reaffirmed its leadership in cybersecurity within Kenya and the region. This accomplishment not only enhances confidence in the bank’s operations but also positions it as a trusted financial partner dedicated to safeguarding customer information while navigating the challenges of digital transformation.
