Information Security Management Policy

  • Security of information, in terms of the confidentiality, integrity and availability of information, is the prerequisite for HSQE incident free operations, effective and efficient.
  • The three pillars and engagement are applied for the information security management.
  • A safe, secure and resilient information security environment is ensured by:
      Compliance and commitment to applicable standards
      Risk management application to all hazards information security related
      Management of change application to all changes related to information security management
      Continual improvement based on lessons learnt derived by monitoring reporting route causes investigating
  • Information security risk assessment and treatment plans are conducted and revised as necessary, but minimum annually for setting up the objectives for the various functions and aspects of information security.
  • Learning engagements are conducted regularly and as necessary to enhance all sea-going and shore colleagues commitment to the requirements of the information security management system
  • Business Continuity, max one day is ensured by:
      Daily back ups, with 30 days history
      Daily storage on different locations inside the company
      Weekly storage offline outside the Company premises
  • Separate policies are introduced to all principal aspects of information security, ie
      Communications
      GDPR
      Cyber security
      Intellectual property
Details
Hits: 3854