LG Uplus Publishes 'Information Security White Paper 2024'
Information Security Investment Increased by Over 30% Compared to Last Year
Transparent Disclosure of Information Security Center Activities Reporting Directly to the CEO
LG Uplus is investing over 100 billion KRW in information security this year as part of its efforts to strengthen its security capabilities.
LG Uplus employees are introducing the 'Information Security White Paper 2024.' Provided by LG Uplus
On July 8, LG Uplus announced in its newly published 'Information Security White Paper 2024' that it will increase its investment in information security by more than 30% compared to the previous year.
This is the second edition of the Information Security White Paper, following last year's inaugural publication, and it comprehensively details LG Uplus's company-wide efforts to enhance its security capabilities.
According to the white paper, LG Uplus invested approximately 82.8 billion KRW in information security last year, an increase of about 19.6 billion KRW from the previous year. This year, the company plans to expand its investment by more than 30% compared to last year, bringing the total to over 100 billion KRW. The number of information security personnel will also be increased to 293, which is 1.86 times higher than last year's 157, demonstrating the company's commitment to expanding its pool of experts.
The security organization at LG Uplus is centered around the Information Security Center, which reports directly to the Chief Executive Officer (CEO). The Chief Information Security Officer/Chief Privacy Officer (CISO/CPO), who is at the C-level, oversees company-wide information security, with dedicated teams for information security technology and personal information protection under their supervision.
The information security technology team leads the application and review of the latest security technologies, manages security services, and conducts activities to prevent and respond to security incidents. The personal information protection team establishes and manages standards to ensure that all personal and critical information within the company is protected legally and securely.
The white paper also introduces efforts to advance the security framework. These include a complete overhaul of the internal security portal, the establishment of a new personal information compliance inspection system, and the enhancement of AI-based security monitoring capabilities. It also highlights the opening of a Privacy Center to strengthen customer rights, the hosting of the first-ever hacking competition by a telecom company to discover next-generation cybersecurity experts, and the operation of a bug bounty program that rewards employees who identify internal vulnerabilities.
In addition, the white paper describes LG Uplus's customer damage prevention analysis system, which is being operated to prevent spam, smishing, and voice phishing, as well as its cooperative framework with the Seoul Metropolitan Police Agency. It also covers the newly established contract-based Department of Information Security at Soongsil University, which was created in collaboration with the university to nurture future security talent.
Furthermore, the activities of the Information Security Advisory Committee, which is composed of external experts from the legal, industrial, and academic sectors, are included. The committee holds regular meetings at least once per quarter to review the progress of LG Uplus's efforts to strengthen its security fundamentals and provides advice on the direction of security initiatives.
The white paper also outlines LG Uplus's Zero Trust roadmap, which aims to never trust and always verify all access as a security principle. To this end, LG Uplus has analyzed its internal status and established step-by-step improvement tasks. This year, as the first phase of the roadmap, the company is focusing on building foundational systems and infrastructure, with particular emphasis on strengthening device security and establishing access control models.
Hong Kwanhee, Executive Vice President and Head of the Information Security Center at LG Uplus, stated, "LG Uplus aims to realize a 'brighter world' by strengthening security, which is directly linked to customer trust, in order to protect our customers' daily lives and provide a better experience. We will continue to reinforce the fundamentals of our security system and consistently enhance our security capabilities so that we can grow into a company that offers services customers can use with the utmost confidence."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
