Development of Information and Cybersecurity Management Systems
Recognizing the critical importance of information technology security, cybersecurity and data protection, due to the evolving risks and continuous advancements in technology, SCBX has implemented relevant governance to manage these issues in compliance with relevant laws and regulations, achieved through policies and guidelines to promote organization-wide security risk management and increased efficiency with technology.
ACTION SUMMARY IN 2024
Promoting Compliance with Policies and Standards Across the Group
- Including the review and improvement of 4 key policies,
- Update of 9 standards, and
- Introduction of 8 new standards
Process Management
- Continue to conduct the group baseline cyber maturity assessment and deep-dive assessment with four strategic companies (Siam Commercial Bank, InnovestX, CardX, and AutoX).
- Provide subsidiaries with resources to build capabilities and monitor, detect, respond, and recover from cyber incidents, and enhance cyber resilience and maturity.
Continuous Development of Information and Cybersecurity Management Systems
- Including the establishment of clear channels and procedures for reporting irregular incidents and regulatory communications these to employees and relevant parties
- Continued to implement technologies to promote cyber resilience
- Conduct security vulnerability monitoring and testing procedures to safeguard against cyber-attacks
- Promote awareness of cybersecurity across the group through awareness courses and mandatory training.
- Compliance with international standards such as ISO 27001:2013, and
- Conduct cybersecurity assessment through internal and independent external audits to ensure alignment of management practices with SCBX Gorup’s strategies, policies, and standards and relevant laws and regulations.
Learning Journey of Digital Employee
Digital solutions and innovation
Center of Excellence
Digital Solutions
Develop Information
