Stransact, Doftwerks get global security certification
By Ambrose Nnaji Stransact, a leading professional services firm and correspondent of RSM in Nigeria, alongside its technology subsidiary, Doftwerks, has attained the ISO/IEC 27001:2022 certification—the globally recognised benchmark for
By Ambrose Nnaji
Stransact, a leading professional services firm and correspondent of RSM in Nigeria, alongside its technology subsidiary, Doftwerks, has attained the ISO/IEC 27001:2022 certification—the globally recognised benchmark for Information Security Management Systems (ISMS).
The certification underscores both firms’ commitment to world-class standards in data protection, confidentiality, integrity, and availability, positioning them as key enablers of secure, enterprise-grade compliance solutions supporting Nigeria’s evolving Nigeria Revenue Service (NRS) e-invoicing framework.
Stransact provides multidisciplinary services spanning audit, tax, advisory, transaction support, and regulatory compliance to a diverse client base. Through its affiliation with RSM, the firm blends local expertise with global best practices to help organisations navigate complex regulatory landscapes.
Its technology arm, Doftwerks, delivers secure and scalable digital solutions across tax compliance, finance transformation, and regulatory technology, building enterprise-grade platforms aligned with both Nigerian requirements and international standards.
READ ALSO: Meet Nigerian-American Ifeanyi Umunna elected as president of Harvard law student government
ISO/IEC 27001:2022 is widely regarded as the gold standard in information security governance, requiring organisations to implement stringent controls across people, processes, and technology. The certification confirms that both firms have established a comprehensive, independently audited framework to identify, manage, and mitigate information security risks across their operations.
Speaking on the milestone, Managing Partner at Stransact, Eben Joels, described the certification as more than symbolic. “ISO/IEC 27001:2022 certification is not a badge; it is an operating discipline. “For CFOs, CIOs, and compliance leaders, it offers board-level assurance that sensitive financial and transactional data is protected in line with the most demanding global standards. It also reinforces our commitment to supporting the NRS e-invoicing regime with solutions that are secure by design,” he said.
As Nigeria accelerates the rollout of mandatory electronic invoicing, concerns around data security and system resilience have become increasingly critical for businesses operating at scale. Through Doftwerks, Stransact provides technology-enabled compliance solutions that integrate seamlessly with enterprise finance systems while meeting regulatory and security expectations.
Chief Technology Officer at Doftwerks, Tunde Awopegba, emphasised the importance of trust in digital tax systems. “Security is foundational to trust in any digital tax infrastructure,” he noted. “This certification validates the robustness of our platforms and internal controls, giving clients confidence that their data is handled to the same standards expected in leading global markets.”
According to Awopegba, the certification delivers tangible value to clients, including enhanced regulatory confidence in meeting NRS e-invoicing requirements, reduced information security risks across financial and tax data, enterprise-grade governance aligned with global standards, and stronger assurance for boards, investors, and regulators.
By embedding information security into both service delivery and technology architecture, Stransact and Doftwerks continue to distinguish themselves as trusted partners at the intersection of regulation, technology, and risk management.
