Information Security Policy Statement
Introduction
Zenith Bank (Ghana) Ltd.’s implementation of the Information Security Management System (ISMS) is in line with international best practice and international standard ISO/IEC 27001:2013.This underpins the Bank's commitment to maintaining and improving its information security assets to guarantee the confidentiality, integrity and availability of customers’ information.This policy serves as the foundational document from which all other information security-related policies are derived.
Scope
This policy applies to all employees, contractors, partners, consultants and any entity with access to Zenith Bank's information assets, systems, and networks. Its implementation protects the Bank from all threats relating to the processing, transmitting, and storing of sensitive information.
Information Security Objectives
The Objectives of the ISMS Implementation are to support the organization in its core mission of providing value to stakeholders through:
- Objective 1 - Protecting Zenith Bank Ghana’s customers’ confidential information, as well as ensuring the integrity and availability of Zenith Bank’s Information Assets.
- Objective 2 - Improving the information security awareness culture across the Bank.
- Objective 3 - Improving compliance with relevant privacy laws.
- Objective 4 - Collaborations with key partners to mitigate the incidence and severity of cyber security breaches from the supply chain.
Information Security Policy
This Information Security Policy reinforces Management’s commitment to the highest standards of Information Security and establishes the framework for the actualization of Zenith Bank Ghana’s security objectives.
The policy covers various aspects of Information Security including access control, risk management and incident response. It emphasizes the importance of confidentiality, integrity, and availability of information assets.
To ensuring the attainment of the highest standards of Information Security and full compliance with ISO/IEC 27001:2013, the Bank conducts regular risk assessments and complies with legal, regulatory, and contractual requirements. The Bank also undertakes continuous improvement of processes and policy reviews as these are essential to adapting to evolving security threats.
Zenith Bank Ghana shall continuously strive for safety, diligence, and excellence to improve the Bank’s information security posture and to protect the Bank’s information assets.
