SECURITY

Information Technology and Operations

Overview

NI has a robust and flexible technology platform geared for growth:

  • NI’s infrastructure and systems have allowed NI to support high volumes of growth, increasing card portfolio and merchant acquiring traffic over the past five years.
  • On an ongoing basis, the company continues to upgrade system capabilities in order to maintain best-in-class infrastructure and processes
  • In merchant acquiring NI has reduced merchant settlement period for the benefit of key merchant relationships, strengthening NI’s competitive advantages with these clients.

The company has significant in-house system development and enhancement the development capabilities and has demonstrated a strong trajectory of operational enhancements.

  • NI made significant enhancements to card managements for which it has a license on the source code for its card processing business;
  • It is currently developing a new approach to product a development, increasingly shifting away from customized, customer-driven enhancements towards systematic, NI-initiated development of solutions replicable across NI’s client base.

NI has also developed a strong risk management framework and effective business continuity planning and disaster recovery procedures.

IT Strategy

1. Align technology infrastructure to support business growth
2. Align technology to geographical presence
3. Rationalize vendors
4. Ensure speed to market
5. Effective controls and reviews

INFORMATION SECURITY AND COMPLIANCES

ISO 27001 certification
Network international is an ISO 27001 certified organization and completed its ISO recertification audit in September 2009.

ISO 27001 is a set of international standards in Information technology and Information Security, drafted in accordance with the rules of the international Organization for Standardization (“ISO”) and the International Technical Committee (“IEC”)

PCI DSS
Network is participating organization on the PCI Security Standards Council based out of U.S and has met the PCI DSS validation mandate.

SAS 70 Audit Compliance
NI’s Main system applications are subject to yearly SAS 70 audit. SAS 70 Audit is mandate in the United States that requires all organizations or service providers that host or process data belonging to their customers to demonstrate adequate controls and safeguards with regards to the security of that information.