Digital Security Risk The proliferation of cyber attacks and cybercrimes is presenting a major challenge in today’s world of business. Large corporations that rely heavily on IT technology in their business operations are being targeted. They have high stakes to fight off cyberattacks that could cause huge damage. Mindful of such security risk, IRPC has adopted proactive measures to prevent and reduce the likelihood of being attacked as well as mitigate the impact of an attack when it happens and to ensure the capability to quickly recover from a cyberattack causing damage to the digital systems. The digital security risk management guidelines are as follows: 1) Acquired ISO 27001: Information Security Management System standard, in full compliance with relevant laws, regulations and requirements 2) Organized annual drills on the implementation of disaster recovery plan in the event of an external cyberattack, mechanical failure or other disasters 3) Ensured that the Security Operation Center (SOC) funct ions ef f icient ly and undergoes cont inual improvements in terms of software, hardware, and personnel, monitored access to the company’s various systems and checked for unusual activities or breaches of access from external sources. The SOC must also establish a process to quickly respond to intrusion and improve knowledge sharing among the personnel on effective prevention 4) Enhanced employees’ knowledge, skills, and awareness of IT safety practices in the use of computers and software, on how to avoid viruses, malware or cyberattacks, with IT support staff on hand to give advice, educate, issue alerts as well as solving problems for all employees Risks associated with COVID-19 pandemic The ongoing mass vaccination drive in Thailand led to relaxing COVID-19 restrictions in an effort to jump-start the economy and to eventually reopen the country for business. But the coronavirus, having mutated into new variants, continued to spread, prolonging adverse effects on businesses everywhere, forcing many to suspend operations due to a government order in case any of their employees were infected by the virus. As a result, construction projects or machinery maintenance were also severely impacted by delays, not to mention late deliveries to customers. In managing risks associated with COVID-19, IRPC gave priority to keeping our employees and related persons safe from infection to keep the businesses going during these difficult times. The COVID-19-related risk management guidelines are as follows: Risk Management Guidelines 1) Set up COVID-19 War Room to effectively enforce preventive measures and resolved issues brought on by the COVID-19 pandemic to achieve the target of zero infection or death 2) Implemented Work from Home program by providing equipment and work systems to enable employees to work from home efficiently, limit congestion in the workplace, maintain a safe distance to reduce the employees’ risk of contracting COVID-19 106 IRPC PUBLIC COMPANY LIMITED 56-1 ONE REPORT 2021
RkJQdWJsaXNoZXIy ODg4NTI=