Cyber Security Policy

This Cybersecurity Policy provides a comprehensive framework for protecting the organization’s digital assets, safeguarding sensitive information, and ensuring compliance with regulatory standards. It outlines measures to address cybersecurity risks, enhance IT resource security, and foster a culture of security awareness and accountability.

• Access Control: Enforces the principle of least privilege and requires multi-factor authentication for critical systems.
• Data Protection: Mandates encryption for data in transit and at rest, with regular backups stored securely.
• Incident Response: Establishes procedures for detecting, reporting, and mitigating cybersecurity incidents.
• Employee Training: Requires annual cybersecurity awareness training and phishing simulations.
• Third-Party Compliance: Ensures vendors and contractors align with organizational security standards.

This policy is a critical tool for mitigating risks, protecting operational integrity, and supporting organizational goals in an increasingly digital world.