130 YINSON HOLDINGS BERHAD | INTEGRATED ANNUAL REPORT 2024 Cybersecurity Yinson always takes active measures to evaluate its management of cybersecurity. Our Information Security Policy & Procedure outlines how we protect information against improper disclosure, ensuring data accuracy, timeliness, and accessibility only to authorised personnel. This policy is developed and regularly updated in line with Yinson’s Data Privacy Policy to incorporate complementary data privacy provisions. Other related policies, like the COBE, also address specific aspects of information security. In addition, the policy outlines a data breach reporting mechanism and response plan. This ensures that we are always vigilant and cognisant in meeting our ESG 30 by 30 target of resolving any breaches that may occur in a timely manner. There were no breaches and we maintained our track record of zero unresolved data breaches in the period under review. Regular Information Security training is conducted to enhance awareness among our employees, suppliers, and third-parties regarding Yinson’s information security policies and their respective responsibilities. Digital transformation can result in new cyber risks, making cybersecurity a pivotal aspect of our Group Strategic IT Roadmap. Our approach to cybersecurity was developed based on a comprehensive risk assessment involving various stakeholders across our business. Risks identified during this process are prioritised based on their likelihood of occurrence and potential impact. This prioritisation ensures that the most critical risks are addressed first. Subsequent strategies and implementation plans are developed based on industry best practices, standards, and regulatory requirements. The roadmap includes several initiatives aimed at bolstering the Group’s cybersecurity system. These include training our personnel, updating processes, and adopting relevant technologies. Key achievements in the year under review include new frameworks, enhanced security policies, and tabletop exercises to strengthen our cyber response and recovery procedures. In addition to enhancing the security of our offshore assets, the IT/OT Security team also works to protect other assets from other businesses. Digital transformation Digitalisation plays a crucial role at Yinson as it empowers strong decision-making across our organisation by placing global, real-time and accurate information at our fingertips, in addition to freeing up our people from tedious and mundane tasks. Digitalisation is also the key to resource efficiency and better safety performance. We have invested significantly in digitalisation across all our businesses and functions. This has given us an edge over the competition, as we are able to demonstrate stronger abilities to take on projects and execute them well, efficiently and safely. Additionally, we believe that investing in digitalisation is one of the most effective ways to reduce costs in the long run amid increasing inflationary pressures. Digitalisation initiatives undertaken during the financial year include: • Launch of Project Polaris aboard FPSO Helang. Case Study: Project Polaris, pg 29. • Launch of a modernised Charging Management Platform and Customer Relationship Management tool for Yinson GreenTech. • Launch of a Cloud-Based Open Data and AI (YODA) Platform. Case study: Data analytics and AI at Yinson, pg 32. • Launch of a new employee engagement tool that swiftly provides engagement insights and actionable recommendations, allowing Yinson to better gauge the organisation’s pulse. • Enhancement of Whistleblowing Platform to integrate with an independent platform, to support an efficient resolution process that safeguards personal data privacy and confidentiality. • Launch of fully digitalised expense management and approval workflow. • Expansion of visualisation dashboards to assist in data-driven decision analysis, across key businesses and corporate functions.
RkJQdWJsaXNoZXIy NDgzMzc=