Ministry of Science and ICT Releases Analysis Report on Information Security Disclosure
Investment and Dedicated Workforce Up 14% and 11% Year-on-Year
Longer Disclosure Periods Lead to Greater Security Investments
The Ministry of Science and ICT released the "2025 Information Security Disclosure Status Analysis Report" on the 30th, which analyzed corporate investments and workforce status in information security. Image provided by the Ministry of Science and ICT
As a series of security breaches have recently occurred, highlighting the importance of corporate responsibility in information security, companies that have consistently disclosed their information security status have shown a clear increase in both security investments and workforce expansion.
The Ministry of Science and ICT released the "2025 Information Security Disclosure Status Analysis Report" on the 30th, which analyzed corporate investments and workforce status in information security.
According to the report, a total of 773 companies fulfilled information security disclosure requirements in 2025, up from 746 companies the previous year. In particular, the number of companies participating in voluntary disclosure reached 107, a 17.6% increase from 91 companies the previous year, indicating a growing trend of participation by private sector companies.
The number of companies fulfilling disclosure requirements has steadily increased every year, from 658 in 2022, to 715 in 2023, 746 in 2024, and 773 in 2025.
Corporate investments in information security have also grown. In 2025, total information security investments amounted to 2.423 trillion won, a 14.3% increase from 2.1196 trillion won the previous year. The number of dedicated information security personnel also rose to 8,506.1, up 10.7% from 7,681.4 the previous year. The continuous growth in both investment and workforce demonstrates the strengthening of corporate awareness regarding information security.
In particular, to assess the effectiveness of the disclosure system, a comparison between companies that disclosed for four consecutive years (559 companies) and those that disclosed for two consecutive years (679 companies) showed that long-term participants experienced more pronounced growth.
The average growth rate of information security investment for companies disclosing for four consecutive years was 48.3%, significantly higher than the 13.8% for companies disclosing for two consecutive years. The growth rate in dedicated information security personnel was also much higher for four-year disclosing companies at 36.6%, compared to 9.9% for two-year disclosing companies.
By industry, the average information security investment was highest in financial and insurance services (8.5 billion won), followed by information and communications (6.2 billion won), and wholesale and retail trade (3.2 billion won). In contrast, business facilities management, business support and rental services, as well as health and social welfare services, saw a decrease in average investment compared to the previous year.
The number of dedicated personnel was also highest in information and communications (25.4 people), financial and insurance services (22.8 people), and wholesale and retail trade (9.8 people), while some service and healthcare sectors experienced a slight decrease.
As a follow-up to the pan-government information security comprehensive plan aimed at strengthening public-private information security capabilities, the Ministry of Science and ICT is pushing to revise the "Guidelines on Information Security Disclosure" to further subdivide disclosure items and strengthen the verification system. Related information can be found on the Ministry of Science and ICT's website through the legislative notice.
Choi Woo-hyuk, Director General of the Network Policy Bureau at the Ministry of Science and ICT, stated, "The information security disclosure system encourages voluntary security investments by objectively releasing the level of corporate information security," adding, "Going forward, we will accelerate the creation of a safe and trustworthy digital environment by further subdividing disclosure items, strengthening verification, and expanding the scope of mandatory disclosures."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
