SYSTEM (ISMS) POLICY
Objective
The objective of the Information Security Policy is to ensure business continuity within the ZBEÜ Directorate of Information Technologies, to prevent security breaches by minimizing information security risks, and to reduce potential impacts in order to minimize the risk of damage.
Policy
The purpose of the policy is to protect the information assets of the ZBEÜ Directorate of Information Technologies against all internal, external, intentional, or accidental threats, during the process of ensuring the continuity of core and supporting business activities.
• The institution's top management has approved the Information Security Policy.
• The Security Policy guarantees the following:
-
Information will be protected against any unauthorized access.
-
The confidentiality, integrity, and availability of information will be ensured.
-
Accessibility to preserved information related to business processes will be provided.
-
Business Continuity Plans will be developed, maintained, and tested.
-
Information Security Training will be mandatory for all employees.
-
Appropriate sanctions will be applied in case of an information security breach.
-
Information will be protected against any unauthorized access.
-
The confidentiality, integrity, and availability of information will be ensured.
-
Accessibility to preserved information related to business processes will be provided.
-
Business Continuity Plans will be developed, maintained, and tested.
-
Information Security Training will be mandatory for all employees.
-
Appropriate sanctions will be applied in case of an information security breach.
-
Title : Head of Information Technologies Department