top of page
Search

ThitsaWorks Achieves ISO/IEC 27001:2022 Certification: A Milestone in Our ISMS Journey

Updated: Sep 8

We’re proud to announce that ThitsaWorks has achieved ISO/IEC 27001:2022 certification, a significant milestone in our Information Security Management System (ISMS) journey, on 28 August 2025.


For a fintech organization handling sensitive financial data, an Information Security Management System (ISMS) is more than a framework; it is a cornerstone of trust, resilience, and operational excellence. By adopting ISO/IEC 27001:2022, ThitsaWorks ensures that:


  • Data protection is aligned with international standards, safeguarding clients, partners, and employees.

  • Processes are standardized, mitigating risks from cyber threats and operational lapses.

  • Security awareness is embedded across the organization, from executives to branch teams.

  • Business continuity is strengthened, enabling efficient responses to incidents and seamless services.


Certification Details

  • Certificate Registration No.: 002281-1-SG-1-ISM

  • Certified Since: 29 August 2025

  • Valid Until: 28 August 2026

  • Scope: The provision of secure digital financial solutions and project management support for infrastructure projects

Proud to be ISO/IEC 27001:2022 Certified
Proud to be ISO/IEC 27001:2022 Certified

Our ISMS Journey


This achievement reflects a collective effort across the organization. The journey began with the vision of our CEO, who emphasized that security must be part of our DNA. It was driven forward by our dedicated ISMS team:




ISMS Core Team
ISMS Core Team

Each team member meticulously ensured processes, documents, and technical controls met global standards. Beyond the ISMS core team, every staff member contributed, participating in trainings, following new procedures, and supporting risk management initiatives — proving that security is a shared responsibility.


ThitsaWorks’ official ISMS documentation ensuring data protection and operational resilience
ThitsaWorks’ official ISMS documentation ensuring data protection and operational resilience

ISMS Risk Management Workshop by ThitsaWorks Team
ISMS Risk Management Workshop by ThitsaWorks Team

ISMS Team in action during audit preparation, ensuring processes and controls meet global standards.


ThitsaWorks ISMS Hub: Driving Best Practices Together
ThitsaWorks ISMS Hub: Driving Best Practices Together
"Achieving ISO 27001:2022 certification is not just about compliance; it’s about building trust with our clients and partners. It reflects our commitment to secure, reliable, and innovative financial services for all." 

Nyi Nyein Aye, Founder & CEO of ThitsaWorks

"This milestone showcases the dedication, collaboration, and attention to detail of our entire team. ISMS is a continuous journey, and we’re proud to set the standard in upholding the highest levels of information security at ThitsaWorks."

Nang Mon, ISMS Manager & Head of Executive Office of ThitsaWorks


Certification Award Ceremony: 28 August 2025

ThitsaWorks team celebrating the ISO 27001:2022 certification award on 28 August 2025.
ThitsaWorks team celebrating the ISO 27001:2022 certification award on 28 August 2025.

bottom of page