Statement of Intent
2Gen prides itself as being a leader in the IT services industry. As part of this, we recognise that we have a responsibility to protect all of the data we hold or process, whether it belongs to 2Gen, our employees, partners, customers, or suppliers. By protecting this data we can ensure that we maintain our reputation as a trusted employer and partner, enabling us to grow as a business and deliver exceptional service to our customers.
Cyber Security is our number one priority.
To demonstrate our commitment to information security 2Gen implement industry best practice security controls and assure the effectiveness of our controls following NIST best practices, partnering with Australian Cyber Security Centre and participating in their MSP3 program to continually improve our and our client’s cyber security postures.
It is the responsibility of all our staff, regardless of grade, to become familiar with our security management processes and to comply with all information security and privacy policies and the procedures that underpin them.
In turn, we commit to ensure that our security management systems and processes are efficient, effective and continuously improving to protect our data assets while avoiding the reputational, legal and financial harm that would result from a data breach.
Management and all staff fully support the information security management system and require all our staff, whether permanent or temporary, partner organisations, suppliers and contractors to do the same.
Director – 2Gen Pty Ltd
Purpose and Scope
Further Information Security and Privacy policies, standards and procedures shall be in place to ensure the principles within this document are met.
All members of 2GEN are responsible for the delivery of information security;
Information Security Principles
2Gen is committed to a number of security principles that apply to all areas and employees of 2Gen regardless of role or geographical location:
Information Privacy Principles
2Gen is also committed to protecting personally identifiable Information and ensuring compliance with the European General Data Protection Regulation;
Maintaining the Confidentiality, Availability and Integrity of both our own and our customers information is a requirement on all of us, from the most junior employee to our Directors.
We will treat the information entrusted to us by our customers respectfully and professionally taking account of Confidentiality, Integrity and Availability of the information as if it were our own. We will ensure that any information we process is done so legally and for legitimate business reasons.