The corporate security system of KazTransOil JSC is designed to support the corporate culture and values of the company, to ensure the protection of employees, financial and technical means, property, technologies, processes of production, management and commercial activities from various threats.
KazTransOil JSC undertakes obligations to provide:
-
physical security in accordance with the requirements of the legislation of the Republic of Kazakhstan in the field of security and counter-terrorism;
-
information security by maintaining an effective information security management system that meets the requirements of the international standard ISO 27001, functioning and improving the effectiveness of the implemented IT infrastructure protection tools to prevent losses and damage from cyber attacks, and preventing unauthorized access to information resources;
-
economic security through the implementation of preventive and prophylactic measures to prevent embezzlement and misuse of funds, abuse and abuse of authority, negligence, etc.
In 2024, the Company conducted a certification audit of the information security management system by the international certification body TUV Thuringen Kazakhstan LLP for compliance with the ISO/IEC 27001:2022 standard for a new three-year cycle. Following the audit, the international certification body TUV Thuringen Kazakhstan LLP issued a certificate of compliance with the requirements of ISO/IEC 27001:2022.
KazTransOil JSC information security management system ISO/IEC 27001:2022 standard compliance certificate (
Download |
View in new window)
pdf 148Кб 12