- Plan to open high-quality cancer data through the establishment of a safe information protection system -
The National Cancer Center (Director Seo Hong Gwan) acquired international information protection management system certification (ISO/IEC 27001 & 27701) through the 2022 Medical Data-Centric Hospital Support Project hosted by the Ministry of Health and Welfare and the Korea Health and Medical Information Service.
In July 2022, in addition to becoming the first domestic medical institution to acquire Personal Information & Information Security Management System (ISMS-P) certification, the Cancer Big Data Center of the National Cancer Center also managed to acquire international information security management system certification (ISO/IEC 27001 & 27701).
The international information security management system certification (ISO/IEC 27001 & 27701) obtained is an international standard for information security management systems established by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) and is the most authoritative international certification in the information protection field.
As the first Korean medical institution, the National Cancer Center passed screening and verification on 114 items in 14 areas related to information protection, including the information protection policy, technical, physical and managerial security, information access control, etc.
Yoo Gi Chung, team leader of the National Cancer Center Information Protection Team, said, “By acquiring the ISO/IEC 27001 & 27701 certification following the previous ISMS-P certification, we’ve managed to establish a safe information protection system and utilize high-quality data in line with the status of national infrastructure as the National Cancer Data Center,” and added, “We hope that this certification case of the National Cancer Center will be a good reference case for other medical institutions and other industrial big data fields.”
Choi Gwi Seon, director of the Cancer Big Data Center of the National Cancer Center, said, “The National Cancer Data Center is preparing for cloud service information protection and personal information protection certification (ISO/IEC 27017 & 27018) this year to open high-quality cancer data to researchers,” and added, “We plan to continuously strive for management that can improve the quality and safety of data and further strengthen the data utilization system and system for researchers in the future.”