National Savings Bank becomes the first Sri Lankan State Bank to receive PCI-DSS Certification

NSB has received the coveted Payment Card Industry Data Security Standard (PCI-DSS) certification, the cardholder data security standard accepted worldwide. The Bank received the certificate of compliance for PCI-DSS Version 3.2.1 from Qualified Security Assessor (QSA), SISA. The PCI Security Standards Council (PCISSC), the governing body of PCI-DSS, is a global organization for promoting Payment Card Industry Standards for the safety of cardholder data across the globe.


NSB believes that the continuous improvement of security standards of the Bank to protect cardholder data is of paramount important to ensure protection of customers from card related frauds. Also, breach or theft of cardholder data affects the entire payment card ecosystem.  The PCI-DSS compliance certification is a testimony for the measures taken by the Bank to ensure that the Bank’s IT systems, processes and procedures relating to cardholder data adhere to the globally accepted security standards.

The PCI-DSS certification compliance is a stringent process which demands a high level of commitment from all related operational and technical areas. NSB Team members were up to the task and their high level of commitment has enabled the Bank to become the first State Bank to achieve the PCI-DSS Certification.   The Bank is committed to maintain the PCI-DSS certification and further strengthen security standards to protect the cardholder data.