It covers our University’s academic education and training activities, administrative activities, and the information assets related to these activities, as well as the relevant business processes carried out within the scope of information security to protect these assets.
Our Information Security Management System ensures that our activities within its scope are conducted in compliance with the ISO 27001:2022 standard.
Our ISO 27001:2022 Information Security Management System Policy aims to:
• Provide secure access to its own and its stakeholders’ information assets,
• Protect the availability, integrity, and confidentiality of information,
• Assess and manage risks that may arise over its own and stakeholders’ information assets,
• Protect the reliability and reputation of the institution,
• Apply necessary sanctions in case of information security violations,
• Fulfill the requirements of national and international regulations, legal and relevant legislation, meet obligations arising from agreements, and ensure information security requirements stemming from corporate responsibilities towards internal and external stakeholders,
• Reduce the impact of information security threats on business/service continuity and ensure the continuity and sustainability of operations,
• Maintain and continuously improve the level of information security through the established control infrastructure.
General Secretariat