3.6 Information
Security
(GRI 3-3, FN-CB-230a.1, FN-CB-230a.2, FN-CF-230a.1, FN-CF-230a.3)
Ficohsa continues to strengthen existing security controls and implement new technologies to enhance its cybersecurity posture
and strengthen customer confidence in the products and services it provides.
With the security of its customers and stakeholders in mind, it continues to invest and strengthen its strategy and governance to maintain the highest information security standards, based on the alignment of policies, regulations, and international best practices.
In 2024, Ficohsa joined a new Financial Computer Security Incident Response Center (CSIRT). It also achieved a prominent position and obtained an outstanding rating in cyber resilience exercises with the participation of various representatives of the financial sector in Latin America.
In addition, internal cyberattack simulation exercises were conducted to identify potential breaches, identify areas for improvement in security processes, and strengthen the institution’s response capacity.
These initiatives were complemented by ongoing awareness-raising activities for employees and clients, fostering a culture of cybersecurity both within and outside the institution to prevent and identify potential risks.
By 2025, the institution’s objectives focus on promoting a secure environment for clients, employees, and partners, consolidating a
robust and sustainable information security model aligned with the highest international standards.
Ficohsa is committed to continuously strengthening its security governance by integrating cybersecurity solutions and technologies that reduce vulnerabilities and protect information in the digital age.