Information Security
Governance
Information Security Management System
LX Semicon has established a company-wide information security governance system and operates a dedicated organization to continuously strengthen its security framework in response to threats such as technology leaks and external intrusions. We have established integrated security policies and guidelines that encompass personnel security, information technology security, and physical security to ensure consistent and comprehensive protection standards. A Chief Information Security Officer (CISO) has been designated to reinforce information security management, and the Information Security Council, which reports directly to the CEO, is in operation to strengthen implementation of company-wide security policies and to monitor and improve the level of security management. In addition, a Chief Privacy Officer (CPO) has been appointed to clarify corporate responsibilities for data protection, including the establishment of privacy policies and compliance with privacy laws.
Company-wide Information Security Organization
Strategy
Information Protection and Privacy Policy
ISO 27001
LX Semicon recognizes the importance of information protection and has established and operates a systematic information security management system that meets international standards. The company has obtained ISO/IEC 27001 certification, an international standard for information security, and based on this, has implemented an Information Security Management System (ISMS) to conduct continuous and organized information protection activities.
ISO 27001
National Core Technology Security
In 2021, LX Semicon was designated by the Ministry of Trade, Industry and Energy as a holder of national core technology in the semiconductor field for its “OLED DDI Design Technology for Driving Display Panels.” Accordingly, the company has strengthened technology protection and security management. To protect national core technology, LX Semicon has established dedicated security management guidelines, appointed a technology management officer, and operates a systematic protection system. It categorizes personnel handling core technologies and provides separate security training while conducting preventive activities against technology leaks and external threats. The company also faithfully participates in annual inspections organized by the government for institutions holding national core technologies, using the results to assess and improve its management practices. These efforts contribute to enhancing and safeguarding national technological competitiveness.
Supply Chain / Partner Company Security
To ensure safe and reliable collaboration with partner companies, LX Semicon operates a structured security management system. Security requirements are clearly defined in contracts with partner companies, establishing responsibilities and standards in advance. Regular on-site inspections and security audits are conducted to assess the security level of partner companies and identify areas for improvement. Through these measures, LX Semicon aims to minimize security risks within the supply chain and continuously strengthen mutual trust for maintaining stable partnerships.
Raising Security Awareness of Employees
LX Semicon regularly conducts information security education, public relations, and training to strengthen the security awareness of all executives and employees by implementing a company-wide information security education and training program annually for all employees, while also providing target-specific training sessions tailored to high-risk groups such as new employees, those preparing to retire, suppliers, personnel handling national core technologies, and those managing personal information; sharing recent trends through a monthly Security Newsletter that covers domestic and international hacking incidents and security issues; promptly disseminating notable security cases and precautions via the internal portal when high-profile incidents occur; conducting regular internal security audits to evaluate the effectiveness of the information protection system; enhancing response capabilities through mock cyber security drills that reflect real-life scenarios, such as simulated phishing emails and malicious code downloads; and periodically checking compliance with security policies, issuing education and warnings for violations, and applying a security penalty system for repeated violations to minimize security risks through a practical and systematic management approach.
Information on LX Semicon’s information security management is available through the Data Library.
