RESPECTING PERSONAL DATA
Learn more about Personal Data Protection.
MAKING SURE INFORMATION SYSTEM INFRASTRUCTURES ARE SECURE
Materion maintains a rigorous cybersecurity infrastructure to protect company, customer and personal data within Materion’s information systems. Our Information Systems (IS) policies and procedures are modeled against the ISO 27001 standard and NIST SP800-171. We are currently in the process of preparing for a Level 3 Cybersecurity Maturity Model Certification (CMMC).
Our systems are protected by state-of-the-art products and we have a dedicated IS Team overseeing the environment. We regularly perform testing to ensure that our controls are in place and effective. We utilize independent third-party services, to verify our security posture. We continuously maintain an advanced security scorecard rating, and we are ranked at the top amongst our peer group. We maintain system security and incident response plans to ensure we are up to date on current protocols and frameworks. Materion has an extensive backup and disaster recovery plan that is tested regularly.
PROTECTING COMPANY INFORMATION
The protection of Materion’s company information and assets is the responsibility of all directors, officers, employees and business partners with authorized access to our confidential information and assets. Materion has established a Global Security Team that is committed to ensuring the protection of company information and assets by following a robust approach to the management of any type of security risk or threat. The Global Security Team’s focus is to mitigate any risk by establishing and adhering to industry security standards across the business and apply stronger measures when necessary.
Materion’s extensive efforts to protect our company information have been recognized by Security Magazines “Security 500” report, ranking Materion #12 (for two consecutive years) in the Manufacturing sector. This report allows similar industries in the manufacturing sector to benchmark their program against our program, as a front runner in the security industry.
The responsibility and obligation to protect company information and assets is reinforced within our Company Code of Conduct and Supplier Code of Conduct. Annual refresher training is conducted on the importance of protecting company information and assets.