Security of information, in terms of the confidentiality, integrity and availability of information, is the prerequisite for HSQE incident free operations, effective and efficient.
The three pillars and engagement are applied for the information security management.
A safe, secure and resilient information security environment is ensured by: Compliance and commitment to applicable standards Risk management application to all hazards information security related Management of change application to all changes related to information security management Continual improvement based on lessons learnt derived by monitoring reporting route causes investigating
Information security risk assessment and treatment plans are conducted and revised as necessary, but minimum annually for setting up the objectives for the various functions and aspects of information security.
Learning engagements are conducted regularly and as necessary to enhance all sea-going and shore colleagues commitment to the requirements of the information security management system
Business Continuity, max one day is ensured by: Daily back ups, with 30 days history Daily storage on different locations inside the company Weekly storage offline outside the Company premises
Separate policies are introduced to all principal aspects of information security, ie Communications GDPR Cyber security Intellectual property