PASHA BANK ANNUAL REPOT 2024

Information Security Information Security Management and support service purchased for back-up are being performed, monitored and reported in a healthy manner by the teams in the Bank. A high functioning application security wall was added to security applications taking into consideration services open to outside, capacity increase and addition of new functions were realized in vulnerability detection systems. At PASHA Bank, information security policies are updated in line with the changes and threats happening in the area, information technology management processes are constantly reviewed and improved. Like every year, penetration tests for minimizing security and cyber threat risks were made, no critical level findings were noticed and the operations for strengthening the infrastructure were maintained according to the results. All of the employees and the newcomers to the Bank participated in the in-house training program on information security awareness. Within the scope of Analyses and Improvement of Information Systems and Information Security Risks Project at PASHA Group, the Group carried on working on standards and benchmarks used in all countries. Improvements will continue at the Group level in 2025. In the following period, developments will continue with investments for network security audit, mobile device management and cyber security applications. INFORMATION SECURITY POLICIES AND INFORMATION TECHNOLOGY MANAGEMENT PROCESSES AT PASHA BANK ARE CONTINUOUSLY REVIEWED AND IMPROVED. high standards 51 General Information