Information Security in ENARGAS

In the context of previous resolutions related to the modernization of Argentine public administration entities, the Argentine Office of Information Technologies (“ONTI”) issued Disposition No. 1/2015, which approved the current “Model Policy of Information Security” (the “Model Policy”) and instructed various Argentine public entities to implement the measures included in their corresponding policies. The Model Policy provides a baseline on which every entity can develop its own guidelines, adapting them to specific needs.

Accordingly, Disposition No. 1/2015 refers to the insufficiency of security measures and the need for an effective implementation of such measures to minimize the risks associated with information security. In addition, it establishes the need to create an Information Security Committee in each of the involved entities. ENARGAS created such committee by Resolution No. I-841/2009.

InPolicies and infrastructure have been evolving and updating in response to the growing number of threats and vulnerabilities occurring in connection with information. Within this context, and considering that each public entity has its particular resources, operations and needs, ENARGAS is required to issue its own policy.

In line with the above mentioned precedents, ENARGAS issued the Resolution, which approved its Information Security Policy and established the terms to develop the procedures and to implement the measures that arise from the policy, taking into account that it may need to acquire or adopt infrastructure.

Among other things, the Resolution acknowledges certain matters that must be considered by the entity when establishing its Information Security Policy. This includes the incorporation of new technology and the need to notify  ENARGAS employees, as well as the need to organize relevant training programs to raise awareness of the importance of protecting information.