Corporate Policy Statement on Information Security Management
Vishay is committed to protecting the confidentiality, integrity, and availability of information assets we create, maintain, or process. This Information Security Statement outlines our approach to information security and provides transparency to our stakeholders, including customers, partners, and employees.
Commitment to Information Security
We recognize that information security is essential for maintaining trust with our stakeholders and ensuring the success of our business. We are committed to implementing and maintaining a comprehensive information security program that aligns with industry best practices and complies with all applicable laws and regulations.
Security Program Highlights
- Governance: Established a formal information security program with clear roles and responsibilities for managing information security risks. This program is overseen by senior management and includes participation from relevant departments across the Company.
- Risk Management: Employ a risk-based approach to information security, identifying, assessing, and prioritizing information security risks. We implement appropriate security controls to mitigate these risks.
- Security Policies and Procedures: Developed and documented information security policies and procedures that address a wide range of security topics, including access control, data security, password management, incident response, and acceptable use. All employees are required to read, understand, and comply with these policies.
- Security Awareness and Training: Provide regular security awareness training to all employees to educate them about information security threats and best practices.
- Technical Safeguards: Implement a variety of technical safeguards to protect our information assets, including firewalls, intrusion detection systems, data encryption, and vulnerability management programs.
- Security Incident Management: Defined process for identifying, reporting, investigating, and responding to security incidents. This process ensures that security incidents are addressed promptly and effectively to minimize potential damage.
Continuous Improvement
We are committed to continuously improving our information security posture. We regularly review and update our information security program to reflect changes in the threat landscape and industry best practices.
For Information Security questions and concerns, please contact informationsecurity@vishay.com
