NSE Harps on Protecting Stakeholders’ Information Assets


By Goddy Egene

The Nigerian Stock Exchange (NSE) has said it takes a proactive approach to security   because it recognises the importance of protecting its  data and stakeholders’ information assets.

Head, Information Security, NSE, Mrs. Favour Femi-Oyewole,  stated  while reacting to NSE’s retention of   the ISO 27001:2013 certification for its Information Security Management System (ISMS) for the third year consecutively.

“NSE takes a proactive approach to security as we recognise the importance of protecting our data and stakeholders’ information assets. With our recertification, our clients and stakeholders can be confident that we follow information security best practices in managing our risk exposure,” Femi-Oyewole said.

According to her, “with our recertification, our clients and stakeholders can be confident that we follow information security best practices in managing our risk exposure.”

The re-certification followed a rigorous independent audit of NSE’s Information Security Management System (ISMS) by the British Standard Institute (BSI), to ensure that the principles of the International Organisation for Standardisation (ISO) on ISMS standard are being upheld at the exchange and controls are working as intended.

The Chief Executive Officer of NSE, Mr.  Oscar Onyema said the management of the NSE was delighted to retain this ISO certification from the BSI.

“It demonstrates our continual commitment to data protection and a clear indication of the robustness of our systems and processes in managing sensitive stakeholders’ information. Since first attaining the ISO 27001:2013 certification in August 2015, we have continued to evolve and improve our security management processes to ensure that our information security controls remain safe and effective in light of emerging business needs and the changing security landscape,” he said.

International Organisation for Standardisation is an independent, standard-setting body which promotes worldwide proprietary, industrial and commercial standards. These standards provide world-class specifications for products, services and systems, to ensure quality, safety and efficiency. ISO 27001:2013, (ISMS) is the international standard of best practice for managing confidentiality, integrity and availability of information asset. This includes financial information, intellectual property, personal records and information entrusted by third parties.

The NSE recently organsed its conference on information security.  Femi-Oyewole had noted that ”with the growing use of technology and digital tools in the capital market, creating awareness and educating individuals and companies on the significance of information security management have become critical in addressing today’s constantly evolving cyber threats.”

According to her, NSE is committed to working with government, regulator, international and local partners, market participants and other stakeholders to monitor developments and effectively respond to cyber threats in its drive to provide a sustainable capital market