设计工具
公司

美光客户信任中心

Valuing customers, earning trust and building strong relationships

我们的承诺从这里开始

在微米, we realize that addressing the challenges of today’s digital landscape requires steadfast commitment to protecting the trust relationship we have with our customers. We embrace the unpredictability and constant threat to cybersecurity by leveraging the industry standard NIST (National Institute of Standards and Technology) 网络安全 Framework; ensuring our workforce is trained and ready for any kind of disruption.

We provide transparency about our privacy practices and ensure our customers understand the choices they have regarding their privacy rights and Personal Information.

美光的信息安全

微米 Technology strives to ensure the best possible security for all of the company's assets, 包括沙巴体育结算平台, 流程, 工具, 知识产权, 特权或机密信息. 我们致力于解决出现的问题.

手指在笔记本电脑键盘上打字的特写镜头

微米安全资源

常见问题

是的. 美光利用NIST网络安全框架. For more information, please visit the NIST web site at: http://www.nist.gov /

是的. 微米 has information security policies that are communicated to employees upon hire, 此后每两年需要进行一次进修培训.

是的. 微米 performs targeted annual third-party penetration 测试.

是的. 微米 has built its standards based on industry best practices to govern the identity of our team members and their access rights.

是的. 微米 is aligned to industry best practices regarding least privilege access for our team members.

是的. 微米 leverages a privileged account management (PAM) 系统 to manage 微米's privileged accounts.

是的. 微米 has a separation process that involves several groups to ensure full and complete removal of access of departing individuals.

是的. 美光对静态和传输中的数据进行加密.

是的. 微米 has a formal incident response plan that follows industry best practices.

是的. 微米 has a risk management program that performs ongoing risk identification (internal risks, and those identified in our supply chain and third-party suppliers) and tracks mitigation efforts and their effectiveness.

是的. 所有员工和承包商都必须签署保密协议.

是的. 微米 has a formal change management program based on the ITIL framework.

是的. 微米 has a robust SDLC (软件 Development Lifecycle) based on industry best practices and guidelines.

是的. 微米 has a formal vulnerability management program that continually identifies and patches any known vulnerabilities in our environment.

是的. 微米 has developed several reference architecture guidelines to ensure our environment is configured to least privileged access.

  • 美光是否对他们的设施进行了物理保护?
    是的, 微米 locations have any combination of the following physical security treatments in place:
    -车载读卡器
    -监控摄像头
    -边境围栏
    -金属探测器
    - x光机
    -限制现场摄像机的使用
    -保安人员采取的其他保安措施, 包括入场放映吗, 巡逻, 禁区审核, 通过监控摄像头进行被动和主动监控
  • Does 微米 ensure that product has not been tampered with from a security perspective?
    是的. 确保沙巴体育结算平台不受损害, 微米 uses a combination of physical site security measures and programs at the manufacturing site, 成品仓库, 与所有合格的物流供应商合作, 根据沙巴体育结算平台类型, there is also tamper-evident features included on the shipping packaging.
  • 你会以固定的节奏测试你的计划吗?
    是的. 美光每年都会对这些计划进行测试.
  • 你使用真实的场景吗?
    是的.  微米 tests with different scenarios (like earthquakes, cyber, labor, fires, typhoons, etc.)以确保计划是有效的.
  • 美光是否使用标准BC/CM/DR测试?是的. 微米 uses a combination of tabletop, structured, and failover 测试 methods.
    是的. 微米 uses a combination of tabletop, structured, and failover 测试 methods.
     
  • 美光是否在其团队中提倡基于风险的思维?
    是的. Our 质量 Management System (QMS) 流程 are at the core of what we do at 微米 to ensure end-to-end customer satisfaction and product quality. Promoting the use of Risk-Based Thinking throughout our QMS framework creates a global awareness of risk at any level of the organization, 从一个特定的地点到整个公司.
  • 美光是否执行工艺风险管理?
    是的. Process risk management at 微米 focuses on the identification of risk within the context of the organization, and the mitigation of what could potentially affect the intended outputs of our QMS 流程.
  • Does 微米 consider customer expectations when identifying process risk?
    是的. We look at the needs and expectations of our interested parties, and then determine factors that could impact our ability to meet the intended process outputs or our customers’ requirements. Identified risks are scored using industry best practices to determine the severity of the risks relative to process or company objectives. Mitigation plans are developed and implemented when necessary.
  • Is there a specific role or team at 微米 who is accountable for process risk management?
    是的. QMS process owners are accountable for ensuring the process risk management activities are performed.

相关链接