Incorporate Cyber culture in our DNA
According to Bitsight (a Cyber Ratings company), Galp is currently positioned within the Top 10% companies of the Global Energy Sector in terms of its Cybersecurity posture. An assessment during 2022, by an external party, also confirmed that Galp’s Cyber Maturity Level stands above the global cyber maturity benchmark.
Several initiatives were launched to raise awareness among employees to the cyber threats that emerged in this context, as well as public alerts to customers and society in general, regarding situations in which cyber criminals tried to take advantage of Galp's reputation for carrying out cyber fraud attempts. Galp continued to invest in promoting a Cyber Culture program through its “CyberOn” brand. Apart from dozens of awareness contents, campaigns, and trainings – inc. regular phishing exercises - a new Cyber Gamification platform is being implemented to explore other Cybersecurity gaps and measure the effectiveness of the awareness and trainings contents being developed through this adaptive learning approach. Also aligned with our goal of incorporating cyber culture in our DNA, we’ll have from 2023 onwards mandatory trainings on cybersecurity topics.
A new Cyber Roadmap has been developed, for the period of 2023-2024, with several initiatives and projects aiming to bring Galp’s Cyber Maturity in line with the Global Top Quartile for all sectors, including the definition of a new value-at-risk approach and value assurance unit, to ensure risk-based focus and prioritization of investments and initiatives.
Guidebook for a Cyber-Resilient Energy transition
Galp contributed to development of this guidebook, together with our peers at the World Economic Forum, thus promoting a more sustainable and safer world.