Information Security Regulation

 

Information security section was established to ensure the protection of Trakhees information assets and support management in accordance with business requirements and relevant laws and regulations. Management of Trakhees has prioritized the implementation of Information Standard Regulation (ISR) issued by Government of Dubai & ISO 27001:2013 standard as a strategic requirement and to comply with the legal and regulatory requirement of Dubai Government.

An Information Security Management System (ISMS) is a way to protect and manage information based on a systematic business risk approach, to establish, implement, operate, monitor, review, maintain, and improve information security. It is an organization wide process approach to information security. Various policies and procedures have been established as per information security regulatory requirements for securing and protecting the confidentiality, integrity, and availability of all the information assets owned and managed by Trakhees .

Objectives

 
  • Ensuring that the information security management system confirms to requirements of ISO 27001:2013 and ISR.
  • Ensure Risk Assessments are conducted on all information systems
  • Develop information security policies and procedures
  • Identify accountability towards inform​ation security
  • Conduct Information Security Awareness for all Trakhees Employees
  • Respond to Information Security Incidents
  • Establish appropriate measures to assess, determine compliance and effectiveness levels of ISMS
  • Review Application changes and projects from information security perspective.​