Our company provides services in the field of "consultancy, penetration testing, security, and software development services related to information security consultancy and testing services." Our company is committed to protecting confidentiality, integrity, and all physical and electronic information assets. Information security and ISMS and PDMS requirements shall be aligned with our corporate objectives.
Our company's management shall ensure the employment of well-trained, competent personnel who are open to change, provide the financial resources necessary to compete with our competitors in the sector, and maintain adequate equipment and infrastructure. The necessary financing shall also be provided together with this infrastructure and personnel.
Business continuity and emergency plans, data backup procedures, protection against viruses and hackers, access control systems, and ISMS and PDMS breach notification shall constitute the cornerstones of our core activities. As a result of the risk assessments conducted, identified vulnerabilities and threats shall be eliminated, ensuring secure access to the information of our customers and personnel.
In addition, as a result of risk assessments, our objectives shall be determined, and the resources and conditions necessary to achieve these objectives shall be provided.
In order to implement this policy, we primarily expect our employees to adopt the requirements of the ISMS and PDMS Management System as part of their working practices. It shall be ensured that all personnel and certain third parties receive appropriate training related to the ISMS and PDMS Management System.
Applicable requirements related to ISMS and PDMS, as well as the opportunities and obligations arising from these requirements, shall be fulfilled and continuously improved. Furthermore, the adaptation of our company, our personnel, and all relevant interested parties to this system shall be ensured.
Our ISMS and PDMS Policy is reviewed once a year, or in the event of significant changes concerning our company, with the participation of management and department/unit managers in order to ensure its suitability, accuracy, and effectiveness, and to maintain its currency.
