Flour Mills of Nigeria Foremost In Cyber Security, Gets ISO 27001 certification

Flour Mills of Nigeria PLC, a leader in the Fast-moving consumer goods (FMCG), has adpted the global best practices when it has to do with cybersecurity and data breach.

This new feat recently earned the company the PECB ISO 27001certification audit for its Information Technology (IT) and cybersecurity framework and policies.

With the certificate, the Flour Mills of Nigeria PLC has been placed as the foremost Nigerian firm in the Fast Moving Consumer Goods sector to be presented with such a certification, which is the most recognized international standards for information security management for any organization globally.

The PECB ISO 27001 Certification was facilitated by Nigeria’s cybersecurity firms, Kecam Technologies Limited and DataSixth CyberSecurity Limited. These firms in line with an international recognized audit firm conducted series of interviews, ensured that the right implementation was in place and also guided the organization to achieve the PECB ISO/27001 certification.

On the importance of the certification to Flour Mills of Nigeria PLC,
Speaking on the importance of the certification, the Group Managing Director/CEO of Flour Mills of Nigeria PLC,  Omoboyede Olusanya, said “We appreciate this certificate and the credit should go to the team that ensured that this happened. This is a document that shows that we have done something and we are very particular in the areas of cybersecurity. We are desirous to build a world-class organization. It is a process and it is an engrained process, there is a continuous stride that we have here. We will keep improving.”

The Group Head of Information Technology (IT) Flour Mills of Nigeria PLC, Serge Yao while speaking to the media said, “This certification brings reassurance to business’ cybersecurity posture. It proves that we have well-defined system to handle cyber-attacks and cybersecurity. This certification testifies that FMN take seriously the confidentiality of information asset and IT risks are controlled (Financial loss and damage to reputation are mitigated).

“We started our cybersecurity program fourteen months ago; the whole organization was engaged, and I want to thank FMN leadership team for the continuous support. It has been a transformational journey for all our employees toward cybersecurity; weak areas were exposed and rectified.

“Globally targets for cyber-attacks have shifted toward manufacturing firms; so, we must mitigate IT risks and potential damage. We are the first indigenous FMCG to be certified and many more will follow for sure. This is a beginning, and we will continue to follow the best practices and ensure that we have our recertification next year. “

On the importance of certification,  the Chief Executive Officer of, Kecam Technologies Limited, an indigenous Cybersecurity company in Nigeria, Bonny Mekwunye, said “About 10.5 trillion dollars will be the cost of cybercrime by the year 2025, what does this mean, it is basically that many organizations will be exposed to cyber-attack, it is important that organizations must start thinking how to build their cyber security framework such as people, processes and technology. This is where ISO certification comes in. 

“Flour Mills Nigeria PLC has seen the relevance to protect their digital infrastructure and we were invited to provide a consulting service with our other partner which is DataSixth CyberSecurity Limited. This certification means that they are globally recognized in the area of data security just like other big firms in the world,” he said.

The ISO 27001 is a globally acceptable certification for organizations that are desirous of strengthening the IT and cybersecurity frameworks. It uses a top down, risk-based approach and most time it is technology-neutral. The approach mostly is in six phases such as the organization’s security policy, the scope of their Information Security Management System, risk assessment, how they manage identified risks, how objectives and controls are implemented and statement of applicability.

Leave a Reply

Your email address will not be published.