Corporate security

The corporate security system of KazTransOil JSC is designed to support the corporate culture and values of the company, to ensure the protection of employees, financial and technical means, property, technologies, processes of production, management and commercial activities from various threats.

KazTransOil JSC undertakes obligations to provide:

• physical security in accordance with the requirements of the legislation of the Republic of Kazakhstan in the field of security activities and on countering terrorism;
• information security by maintaining an effective information security management system compliant with the requirements of ISO 27001 international standard, functioning and increasing the efficiency of the implemented IT infrastructure protection means to prevent losses and damage from cyberattacks, preventing unauthorised access to information resources;
• economic security through the implementation of preventive and prophylactic measures to prevent embezzlement and misuse of funds, abuse and abuse of authority, negligence, etc.

Within the framework of maintaining certification to ISO/IEC 27001:2013 standard in 2023 in KazTransOil JSC the supervisory (inspection) audit of information security management system was conducted, which was combined with the transition audit to the new version of ISO/IEC 27001:2022 standard. Following the results of the transition audit, the international certification body TÜV AUSTRIA Standards and Conformity Ltd. issued a certificate of conformity to ISO/IEC 27001:2022.