56 ABOUT THIS REPORT WE ARE KENANGA LEADERSHIP STATEMENTS SUSTAINABILITY AT KENANGA KENANGA INVESTMENT BANK BERHAD SUSTAINABILITY REPORT 2023 Accelerating Data Security Measures In the year under review, we bolstered the cyber resilience of our operations through the implementation of the following measures: In 2023, zero cyber security incidents involving breach of customer data were recorded. The ongoing escalation of cyber threats has underscored the importance of cyber security measures. Aligned with our IT Strategy 2023-2027 and DLP Framework, we are committed to continuously strengthen our cyber security protocols. This involves necessary upgrades to our systems and raising awareness amongst both our employees and clients to preemptively address cyber security risks. Our overarching goal is to cultivate trust amongst our clients as they engage in financial pursuits in this digital age, reassuring them that their personal and financial information are safeguarded. Future Outlook Completed 2,979.6 hours of mandatory in-house cyber security training for employees Achieved a success rate of 89% in identifying phishing emails through our employee phishing simulator Conducted 4 mock-phishing exercises during the year SECURING CUSTOMERS’ DATA • Ensured DLP solutions in place to prevent data leaks from internal sources • Ensured virtual patch solution in place to shield servers from risks before applying physical security patches • Implemented Cloudflare to shield web applications from cyber-attacks STRENGTHENING MEASURES FOR SECURING EMPLOYEE DATA • Enhanced usage of mobile management tool to effectively monitor company information on employee’s mobile phones • Enhanced security posture by upgrading Microsoft 365 subscription to include the full E5 security suite which includes advanced endpoint and identity protection FOSTERING CYBER AWARENESS AMONGST EMPLOYEES • Collaborated with a team of experienced cyber security experts to provide valuable cyber knowledge to our Group Digital, Technology and Transformation Division • Conducted mandatory monthly cyber security awareness training for all employees, in partnership with Sophos and our in-house Kenanga Group Learning Management System • Implemented regular email phishing simulations to educate employees on identifying and responding to potential phishing threats • Conducted online quizzes and training sessions • Introduced the ‘IT-Cyber Security – Staying Safe in the Cyberspace’ module as part of our New Hire Orientation Course SUSTAINABLE ECONOMIC GROWTH
RkJQdWJsaXNoZXIy MTc1ODMy