Page 43 - 2023 CPC Corporation,Taiwan
P. 43

• Established a security operation center (SOC), intrusion detection and defense system, anti- virus security mechanism, Advanced Persistent Threat (APT) defense for emails and websites,             to strengthen cybersecurity of the overall information environment.
• Conducts regular security inspections, firewall policy reviews, cybersecurity health checks, scanning and patching vulnerabilities in personal computers and servers, and organizing red team exercises, to evaluate the comprehensiveness of cybersecurity and information and communication systems.
• Following the PDCA (Plan-Do-Check-Act) principle, CPC regularly conducts business continuity and cybersecurity exercises, ISO 27001:2013 (information security management systems) third-party certification, internal cybersecurity audits, and on-site cybersecurity audits for contractors.
• Introduced two-factor authentication and behavioral analysis for identity protection to enhance the security of personal identities and user accounts. The company also established a cybersecurity risk management system that examines the risk exposure of CPC, contractors, and suppliers on the Internet.
• Enhanced the security and protection of the industrial control system to ensure that Critical Information Infrastructure (CII) is operating correctly.

   41   42   43   44   45