Information Security Strategy
Information Security Verifications
& Evaluations and Related Activities
Doosan Enerbility has its security system objectively reviewed based on the international standard, the ISO 27001.
Equipped with a Global Security Operations Center (GSOC) that is operated 24/7, real-time monitoring of potential information security threats is performed,
with immediate action being taken whenever any abnormal behavior or infiltration attempt is detected. In the event of an infiltration incident, swift action will be taken according to the guidelines outlined in the manual prepared on response measures.
A structured management process is in place, which includes cause analysis of incidents and measures aimed at preventing recurrences.
- The employees are required to take a training program on information security at least once every year and to participate in various campaign programs aimed at promoting information security awareness, such as phishing simulation drills.
- Preventive measures are also being taken against potential threats from third parties by conducting regular security checks on external partner companies and checking on the faithful implementation of security agreements.
- These activities constitute an integral part of the company’s ongoing efforts to strengthen its information security system and safeguard the overall business environment.