Information security/protection

home > esg > EHS > Information security/protection

Due to the increasing importance of information security and protection,
CS WIND operates an information protection organization and complies to legal regulations
to prevent and manage risks such as information leakage.

CS WIND has appointed a Chief Information Security Officer (CISO) to implement an information security management system according to the company’s policies and makes efforts to strictly manage and protect the company and customer information.
Through cooperation with employees, customers and others, CS WIND will reinforce information protection management and post the annual status of information security and protection activities and investment for transparent disclosure.
Disclosure -
Information protection

Source : Korea Internet & Security Agency(https://isds.kisa.or.kr)

No
Name
Download
1
2021 information protection disclosure (2022.06.28)
Download
Policy and major activities

Our goal is to achieve zero risk with the safe operation of the organization’s information assets and active management for issues, and to prevent the leakage and misuse of critical information assets, CS WIND has established and executes an information management policy from data access management to cloud security. Moreover, CS WIND continues to consistently strengthen information security activities and advance the management system.

Information protection policy
  • Data protection and preservation policy
  • Access management policy
  • Risk evaluation policy
  • IT asset management policy, etc.
Information security activities
  • New security service security measure review and vulnerability inspection
  • Security solution operation and monitoring
  • Employee information security awareness promotion activities
  • Strengthened communication with interested parties
  • Information protection disclosure
Organization and activities

To implement more active, prompt information security and risk management system in line with the global trend of increasing need for cyber security, CS WIND appointed a CISO and added information security staff to improve expertise and the independence of the information protection management system. Beyond simple efforts to establish information protection strategies and policies, we will establish countermeasures based on risk management, as well as legal system compliance and protection management for flexible responses to new security threats throughout the entire company.

Organization

CISO

Information security staff

Practice activities

Sharing of security trends and accident cases Efforts for preventing leakage of confidential information Efforts to improve the awareness of members Vulnerability analysis and improvement plan sharing