Cybersecurity

We have a strategic information security plan that seeks to keep the bank at the forefront of information protection, according to the best market standards.

At CaixaBank, we have the most innovative technology to prevent and detect cyberattacks, ensuring at all times the confidentiality, integrity and availability of information of our company, customers and employees. We work under the strictest safety standards, a requirement that has been acknowledged with a rating above the average of our competitors. 

We participate in various exercises in which a series of tests are conducted to assess our cybersecurity capabilities, consistently ranking among the top positions in the banking sector in Spain.

In 2024, for the second consecutive year, we achieved the highest score in Information Security / Cybersecurity and Systems Availability in the DJSI report.

We have a cybersecurity model certified under the international standard ISO 27001 and certifications CSIRT and FIRST , which guarantee our success in the sector.

Security, our priority

Our team is committed to information security, complying with both the legal and regulatory requirements in force, and with the NIST Cybersecurity Framework, the most advanced security framework.

As one of the leading banks in innovation and cybersecurity, in 2024 we will continue to participate in the following projects at the European level in the development of cybersecurity capabilities:

	AI4CYBER: artificial Intelligence app to improve anomaly detection and infrastructure protection.
	ATLANTIS: improve response and coordination between critical infrastructure operators to large-scale attacks or incidents.
	GREEN DATA AI: improve the efficiency of Fraud Detection systems with AI tools.
	EMERALD: transform the concept of continuous assessment and certification of cloud-based services into a complete scheme for Certification as a Service (CaaS).
	NG-SOC: generate tools and services that improve SOC (Security Operations Center) capabilities.
	INTERSOC: generate tools and services that improve SOC (Security Operations Center) capabilities.
	PIQASO: develop optimized and operational implementations for a set of cryptographic algorithms and post-quantum protocols, the encapsulation of keys, digital signatures, key exchange (authenticated), among others.
	REWIRE: certification of capabilities for professionals dedicated to cybersecurity in the European financial field.

Besides, we are co-founders of APWG.eu , one of the main international cybersecurity task forces, and in Europe we represent the global awareness campaign StopThinkConnect.org .