¢ Information Security Responsibilities
The Information Technology Department is designated as the information security authority of the company. It is responsible for establishing information security policies, as well as planning and implementing related management operations and measures.
The Information Technology Department is designated as the information security authority of the company. It is responsible for establishing information security policies, as well as planning and implementing related management operations and measures.
¢ Network and Communication Security
-
-
- To prevent hacking and virus intrusions, the company has implemented firewalls, anti-spam protection systems, and anti-virus/anti-hacking systems to safeguard the information environment.
- Social engineering drills are conducted annually to enhance employees’ awareness of email security. These exercises help employees remain vigilant against suspicious emails, reducing the risk of virus attacks and data leakage. Post-drill testing and training are also provided to further strengthen information security awareness.
- To prevent hacking and virus intrusions, the company has implemented firewalls, anti-spam protection systems, and anti-virus/anti-hacking systems to safeguard the information environment.
-
¢ Trade Secret Protection
-
-
- Access control is enforced on information systems and file servers. Unauthorized personnel cannot access data unrelated to their job responsibilities. Measures for auditing and controlling data transfers have also been implemented.
- Access control is enforced on information systems and file servers. Unauthorized personnel cannot access data unrelated to their job responsibilities. Measures for auditing and controlling data transfers have also been implemented.
-
¢ Data Preservation and Continuity
-
-
- Through server virtualization, the company not only improves work efficiency but also ensures system and data backup and redundancy, achieving uninterrupted operations.
- Through server virtualization, the company not only improves work efficiency but also ensures system and data backup and redundancy, achieving uninterrupted operations.
-
¢ ISO 27001 Certification
URT is currently evaluating the feasibility of ISO 27001 certification. Through this international standard, we aim to enhance our operational procedures and align with global practices.
URT is currently evaluating the feasibility of ISO 27001 certification. Through this international standard, we aim to enhance our operational procedures and align with global practices.