As the amendment to the Credit Information Act went into effect on the 4th, all financial institutions subject to evaluation should self-evaluate the status of personal credit information management and operation, and regularly submit the results and supporting data. There are 3,653 institutions that are subject to constant evaluation of information protection in the financial sector, including financial companies that process personal credit information and some public institutions.
Financial companies should reorganize their existing personal information protection policies, and secure visibility of work by integrating and managing the distributed management and management personal information protection system across the enterprise. In addition, it is necessary to establish a’personal information protection system’ to convert the personal information protection work in the field to an operating system at all times.
On the 16th, SSR (SSR), a company specializing in vulnerability diagnosis, announced on the 16th that it has completed the’Integrated Consulting for Establishing Personal (Credit) Information Protection System’ in connection with the regular information security evaluation system in the financial sector.
SSR has been conducting consulting since last year to meet the requirements of financial companies for personal information protection. The work was integrated through company-wide collaboration channels for systematic management of personal information protection and standardization of related policies and regular evaluation and inspection standards necessary for securing compliance according to the revision of laws.
The implementation of 9 areas of the Financial Security Agency’s regular evaluation items and 143 implementations of the personal information protection system consists of a total of 3 areas (regular evaluation system, personal credit information system, integrated dashboard), and information collected in each area. A standardized architecture was proposed so that the data and related data can be linked and utilized.
In particular, since the nature of personal information protection work is directly linked to the business work of the field, it aims to convert the personal (credit) information protection work to a regular operation system through the organic linkage of regular/irregular work and related data of the field. The system is planned to be completed in the first half of 2021.
Founded in 2010, SSR has been conducting security research and consulting projects such as diagnosis of IT infrastructure vulnerabilities in various industries, simulation hacking, information protection consulting, information protection management system certification, and security solution development. It has about 500 customers in all industries such as finance, public and telecommunications.
SSR CEO Pil-ju Ko said, “This financial consulting is a standard according to the revision of the Credit Information Act and can be applied to all financial sectors, so we will actively expand the market from the first half of this year.” As the necessity of security increases, SSR will take the lead in the growth of the personal information protection and security vulnerability diagnosis market.”
Reporter Hyangseon Lee [email protected]
Source: 전체 – 넥스트데일리 by www.nextdaily.co.kr.
*The article has been translated based on the content of 전체 – 넥스트데일리 by www.nextdaily.co.kr. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!