Information Security Policy Statement (IMS Policy)

Our Board and Management are committed to protecting sensitive information throughout the Bank to preserve its Confidentiality, Integrity, and Availability.

Our strategic objectives are aligned with information and cybersecurity requirements, mechanisms for information sharing, electronic operations, and e-commerce, as well as reducing information or cybersecurity risks to acceptable levels.

We at ICB comply with the Information Security Management Systems Standard, the Business Continuity Management System, the Service Management System, the Payment Card Industry Data Security Standard (PCI-DSS), and other national and international legal and regulatory requirements.

ICB’s Information and Cybersecurity Strategy and Risk Management framework provides the context for identifying, assessing, evaluating, and managing information and cybersecurity risks by establishing and implementing the ISMS.

We regularly review our Information and Cybersecurity risk management policies and practices, Business Continuity Management, Data Backup Procedures, IT Systems Patch Management, and Access Control Policy to align with industry standards and emerging threats.

ICB shall communicate transparently to the board regarding the level of Technology and Cyber risk to enable business-driven decisions on investments. All our employees at ICB are responsible for reporting security breaches.

The ISMS is subject to reviews and continuous improvements where necessary.