Busan Port Authority (BPA) has maintained its Information Security Management System-Personal (ISMS-P) certification for the second consecutive year, establishing itself as a model case of autonomous security among public port institutions in the era of digital ports.
On July 15, Busan Port Authority officially announced that it has maintained the 'ISMS-P (Information Security Management System-Personal)' certification, which is jointly announced by the Ministry of Science and ICT and the Personal Information Protection Commission. This marks the first case among public port institutions to voluntarily adopt and maintain this certification.
The ISMS-P certification is a nationally accredited system that evaluates the integration of information security and personal information protection management systems, providing an objective verification of digital security levels for public institutions and private companies. Although BPA is not required to obtain this certification, it became the first port authority to acquire ISMS-P certification in 2024, and this year, it passed the follow-up audit, once again proving its systematic information security infrastructure.
Maintaining ISMS-P certification requires meeting a total of 101 criteria, including 16 for establishing and operating an information security management system, 64 for protection measures, and 21 for requirements at each stage of personal information processing. BPA received a passing score in the follow-up audit by conducting comprehensive management activities such as internal information security inspections, risk analysis, implementation of security measures, and checks of its incident response system.
In particular, the authority focused on institutionalizing security by conducting multi-layered inspections of technical, physical, and administrative security systems centered on the BPA website, as well as updating information security regulations and manuals to reflect the latest laws and regulations.
Song Sanggeun, President of Busan Port Authority, stated, "In the rapidly digitalizing port logistics environment, information security is not optional but essential," adding, "We will enhance our autonomous security capabilities and establish a Busan Port model that proactively responds to cyber threats."
BPA plans to use the ISMS-P certification as a foundation to develop collaborative information security models with private port-related businesses and partner organizations in the future, and it also intends to address the risks associated with handling personal information as digital port infrastructure expands.
Busan Port Authority
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
