Information Security Policy

HomeInformation Security Policy

Information Security Policy

The Information Security Management System is the tool with which SA FIRE intends to guarantee the confidentiality, integrity and availability of its information assets and business systems.

The achievement of adequate levels of safety makes it possible to mitigate and counteract losses and/or damage that may have an impact on the environment, people, the image and reputation of the company, on economic and financial aspects, as well as allowing compliance with the contractual and legislative context in force regarding the continuity of the service provided and protection from major accidents.

The company’s top management has defined the following objectives for the implementation of an effective Information Security Management System:

1.    Adopt and implement recognized principles and good practices to ensure Information Security and promote the acquisition of certifications of compliance with the international standards of reference;

2.    Identify roles and responsibilities, to be assigned to its staff, regardless of the hierarchical level occupied, also involving third parties who carry out key tasks;

3.    Allocate the necessary resources in order to ensure the use of suitable measures for aspects concerning physical, logical and organizational security and for the achievement of the set objectives;

4.    Identify, document and apply rules governing the methods of use of the information, assets and tools used;

5.    Prepare adequate reaction and management measures in the event of events that may compromise information security and normal operations;

6.    Develop a staff awareness programme through regular information and training sessions;

7.    Undertake to carry out a continuous process of improvement and evolution of the Management System, planning, executing, verifying and continuously implementing measures and expedients to combat potential events that may compromise the company’s information assets.

Top Management is directly responsible for the implementation of the policy and its compliance by all interested parties, shares its principles and objectives and fully supports the implementation and maintenance of the Management System, providing the necessary resources for this purpose.

This Information Security Policy is communicated to all employees and made available to all interested parties as deemed necessary.

This document is periodically revised and updated to make corrections and additions to significant changes regarding information security.

 

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close