Our Ambition
Our ambition is that all services, assets, and infrastructure delivered by OMV Group IT should be provided in accordance with their respective protection needs and monitored and maintained accordingly. In order to meet these objectives, a variety of measures are implemented, either on the people and awareness side, through process- and cyber risk-based initiatives, or with technological implementations (tools, cyber defense capabilities, endpoint detection, etc.), to ensure appropriate cyber resilience. To track the effectiveness of our measures, we regularly assess the maturity level of our security services through external audits based on given standards (CMMI). In addition, other indicators to evaluate our progress and the efficiency of the information security policies relate to the number of training sessions conducted, the frequency of these sessions, the overall IT risk exposure, and the number of noteworthy cybersecurity incidents.
Status 2024:
Ransomware, phishing attacks, and targeted cyberattacks on critical infrastructure threaten companies in an increasingly digitalized world. Deepfakes and the spread of misinformation and disinformation through the increased use of AI are coming more and more into focus and pose new challenges for OMV as well. With targeted measures such as the implementation of the latest IT security technologies, comprehensive training measures for our employees, and holistic business cyber resilience concepts, OMV believes it is well prepared for the new challenges.