POSCO was awarded the 11th`Information Protection Award`grand prize on December 17th,sponsored by the Korea Communications Commission and hosted by the Korea Internet&Security Agency.
The Information Protection Award,which was first awarded in 2002,is given to a group that is selected from domestic companies that highly contributed to protecting information and raising the awareness of such protection.
NHN,SK Telecom,and Samsung SDS have received grand prizes,and approximately 100 companies have received the honor of awards in total thus far.
At the award ceremony,which was held at the Sejong Performing Arts Center,Information Planning Division Head Mr Hwang Seokju who received the award representing POSCO said that"With this award as a stepping stone,we will focus on information protection activities that are true to the basics and principles,to spread high levels of security mindsets throughout POSCO and investing companies."
POSCO,to become a global company,newly recognized the importance of information assets back in January of 2004,and established and announced an information protection policy which is the acting standard.Thereafter,POSCO centralized all work products to the document management system,simultaneously strengthening work efficiency and security functions,and also unified document delivery processes.In 2007,an Information Protection Reporting Center started operation and served as a window for reports and consultation.
In addition,to make information protection a norm in everyday activities and increase security mindsets of employees,POSCO carries out information protection education each month.Everyday security elements are managed each quarter,weak spots are checked frequently to point out violations,and strong policies such as HR penalties are applied to employees who violate security policies.
Security inspections are also customized internally.Mock situations are created for inspection,such as an imitation phishing mail that is created and sent out to employees to check their response level,and malicious code for the purpose of inspection is installed on USBs to see if they are accessed in public areas.Security risk response levels are also strengthened to maintain a higher dimension of security.
