DESFA is committed to safeguard critical assets and ensure uninterrupted operations in the face of adversity, by enhancing the organization’s resilience against evolving threats and disruptions.
To that end, an organizationally independent Information Security and Business Continuity Department has been established in the context of a modern governance approach aligned with the industry best practices and enhance the overall 2nd level of control related to the cyber security and business resilience.
Key company documents such as the Information Security and Business Continuity Policy and the associated Framework have entered into force, enhancing DESFA’s corporate system framework; we continuously refine and strengthen our processes, assessments and plans in coordination with relevant internal stakeholders, to align with industry best practices and regulatory requirements, reinforcing our defense against cyber threats and data breaches, and to support and ensure the swift recovery and continuity of critical functions during unforeseen events.
Our Information Security and Business Continuity posture includes our pursuit and application for international standards ISO/IEC 27001:2022 (Information Security) and ISO 22301:2019 (Business Continuity) certifications, with a view also to being compliant with the NIS2 directive for cybersecurity in critical infrastructure. More specifically, since July 2024 DESFA is certified with ISO/ IEC 27001:2022 (Information Security) και ISO 22301:2019 (Business Continuity).
Finally, empowering our workforce with the knowledge and skills to master cybersecurity and business continuity has been a cornerstone of our strategy; we conduct comprehensive awareness campaigns to educate employees on security best practices, remaining steadfast in our commitment to advancing information security and business continuity practices, ensuring operational resilience in an increasingly complex threat landscape, and safeguarding the trust and confidence of our stakeholders.