KU passed ISMS certification audit

ISMS will strengthen the security, diagnosis, and risk response capabilities of KU’s academic administration system.

Korea University recently passed the certification audit for the Information Security Management System (ISMS) and will acquire the certificate.

* The ISMS certification was originally a requirement for all public and private for-profit information and communication service providers as defined in the Act on Promotion of Information and Communications Network Utilization and Information Protection, Etc. in order to improve their data protection capabilities and prevent data leakage. Later, the Act was revised to expand the scope of organizations subject to the ISMS certification, to include universities with at least 10,000 students as defined by the Higher Education Act and those with annual sales or annual revenue of at least 150 billion won.

Over three months beginning in July 2018, Korea University received consulting services in order to acquire an ISMS certification for its academic administration system.

As a result of the consulting project, Korea University’s academic administration system was able to establish comprehensive capabilities, including data-protection state and asset analysis, security weakness diagnosis and protection-measure establishment, risk analysis and countermeasure establishment, and a data-protect management system implementation.

Kyung-Ho Lee, Vice President for International Technology and Service, said, “Although most universities are placed in circumstances unfavorable to investing in information systems, Korea University put data protection system improvement as its top priority. As a result, it was able to pass an ISMS Certification Audit.”