The Information Security Management System (ISMS) was established to protect the confidentiality, integrity and accessibility of information within ENKA by applying asset and risk management processes and to assure the interested parties of managing the risks properly. ISMS is a part of ENKA’s corporate processes and general management structure. Information security processes were taken into consideration in the design and controls of information systems and scaled in accordance with ENKA’s needs.
ENKA has taken the ISO 27001: 2013 standard as reference in accordance with its scope of ISMS. This standard is used effectively in company processes to demonstrate the ability of ENKA to meet the information security requirements for the internal and external stakeholders. The Corporate Information Security Policy refers to the requirements, definitions, rules, practices, responsibilities and workflows that are prepared according to the related laws and standards based on the business requirements compatible with and supports ENKA corporate business objectives.
In this regard, ENKA Senior Management, in all of its company operations that are carried out in the light of its vision to be one of the best and innovative companies among the engineering and construction companies serving worldwide, and in line with its mission to design, build and deliver safe, high-quality and cost-effective construction projects, has made a commitment to ensure the security of the information of ENKA and its stakeholders, to protect information assets, to meet information security requirements and expectations within the scope of applicable requirements and international standards, to improve information security performance by systematically managing risks, to ensure infrastructure and operational security, and to assure that all employees will operate within the framework of the company information security policies and procedures.