• FIS received ISO/IEC 27001:2013 certification from BSI, an international standards organization, for its eight primary U.S. data centers.
• Certification recognizes FIS’ preparedness to manage security of financial information and other data for companies or other third parties.
FIS™, a global leader in banking and payments technology as well as consulting and outsourcing solutions, has earned ISO/IEC 27001:2013 certification by British Standards Institution (BSI), an international standards organization.
The ISO/IEC 27001 standard requires organizations to form an information security management system (ISMS), thus creating a systematic way of managing sensitive information and maintaining security. As FIS’ certification states with respect to meeting this standard: “The FIS ISMS supports the operations of strategic data centers by providing a secure and sustainable computing environment to support global financial institutions and commercial clients through the implementation of secure practices and work relationships with supporting functions.”
The certification requires organizations to not only monitor, measure, analyze and review their information security controls, but to commit to ongoing refinements that keep them on top of security issues. This certification currently covers FIS’ eight primary data centers across the United States, including locations in Arizona, Arkansas, Florida, Georgia, Illinois, North Carolina and Wisconsin.
“This certification further demonstrates FIS’ never-ending commitment to providing the highest-quality data security to our clients,” said Greg Montana, chief risk officer, FIS. “We’re extremely proud of this achievement as it shows our clients that their data and that of their customers is being protected in accordance with recognized standards.”
“Companies with the highest information security profiles, like FIS, must build a framework for protecting confidentiality, integrity and availability of information,” said Todd VanderVen, president, BSI Americas Group Inc. “The ISO/IEC 27001 standard allows customers and stakeholders of certified companies to trust that their confidential data will be secure.”
ISO/IEC 27001:2013 certification must be provided by an accredited third party, like BSI, which has operated under British Royal Charter since 1929. BSI has the largest global pool of qualified auditors in information security. In 2013, it issued more than 74% of ISO/IEC 27001 certifications in the United States and more than 45% of certificates worldwide.
FIS is well known for its efforts to maintain cybersecurity. It is part of a select group of industry leaders working as a cybersecurity research partner to the Department of Homeland Security, among other federal agencies and local law enforcement, as well as to Microsoft. It also is a member of the Financial Services Information Sharing and Analysis Center (FS-ISAC) and helped plan the 2014 FS-ISAC Cyber Attack Against Payment Processes Exercise.
FIS’ active involvement in public-private partnerships designed to share information and defend the financial services industry from cyber threats led to its invitation to attend the White House Summit on Cybersecurity and Consumer Protection on Feb. 13 at Stanford University.
FIS (fisglobal.com) is a global leader in banking and payments technology as well as consulting and outsourcing solutions. With a long history deeply rooted in the financial services sector, FIS serves more than 14,000 institutions in over 130 countries. Headquartered in Jacksonville, Fla., FIS employs more than 40,000 people worldwide and holds leadership positions in payment processing and banking solutions. Providing software, services and outsourcing of the technology that drives financial institutions, FIS is 426 on the Fortune 500 and is a member of Standard & Poor’s 500® Index.
One Company, One Solution. By packaging assessment, training and a management system toolset, BSI (bsigroup.com) delivers a business improvement solution that combines it all in a comprehensive service offering and allows us to provide an integrated approach to meet the needs of the organization and embed excellence across the business. BSI presents a one-stop value proposition from the decision to improve systems through to registration and continual improvement. From start to finish, BSI helps turn complexity into simplicity.