Information Security Policy

BiP

Information Security Policy

  • Determining strategy, focus, objective and road map in order to ensure information security,
  • To ensure and maintain information security, confidentiality, integrity and availability goals of information assets,
  • To increase the reputation of the company by working to comply with standards, laws and contracts related to information security,
  • Evaluating stakeholder requests regarding information security,
  • Analyzing security risks and controls in order to systematically manage information security risks and to support an effective risk management approach in order to eliminate or reduce the identified risks to an acceptable level,
  • To determine the roles and responsibilities, to allocate the necessary resources for the management of information security risks and the healthy operation of security controls,
  • To establish the necessary systems to manage information security violations and to take appropriate measures to prevent recurrence,
  • To carry out awareness studies and to create competent human resources in order to ensure that information security wise interested parties comply with the standards,
  • To keep information security documentation in effect as up to date,
  • Carrying out work towards a mature and improved information security,
  • Within the scope of information security; It is the responsibility of the top management to prepare, update and observe the implementation of the Information Security Policy and supporting procedures, and to establish the mechanisms that will ensure that the activities related to this Policy are carried out.
BiP