Three Foundational Security Strategies for a Sustainable Semiconductor Industry: Training, Encryption, and Backup

4:35 pm - 5:00 pm

The semiconductor industry operates within a highly interconnected global supply chain and collaborative ecosystem, making it particularly vulnerable to cyber threats. While most organizations have implemented security technologies such as intrusion detection systems and firewalls, many real-world incidents stem not from a lack of advanced tools but from human error or security gaps in fundamental security practices.

This session presents three practical strategies for achieving sustainable cybersecurity in complex semiconductor IT environments: continuous security awareness training, persistent data encryption, and automated backup and recovery. First, organizations must strengthen employee awareness through continuous, hands-on security training, enabling staff to quickly recognize and respond to advanced persistent threats (APTs) such as phishing attacks and malicious links. Second, maintaining persistent data encryption ensures that critical assets, including design files, manufacturing process data, and customer information, remain unusable even if they are exposed or exfiltrated. Third, automated backup and recovery capabilities are essential to maintaining business continuity, allowing production and R&D operations to continue even in the event of ransomware attacks or system failures.    

The focus of security is shifting from simply preventing incidents to ensuring long-term operational resilience. Many security experts emphasize that now is the time to revisit and reinforce the fundamentals. This session will share practical insights on how semiconductor organizations can prepare for unpredictable threats across complex supply chains and sustain stable operations even after security incidents occur.   

Featured Speakers

Bongho Kang

Bongho Kang

Executive Managing Director, Fasoo

“Bongho Kang” is an Executive Managing Director at Fasoo, where he leads initiatives focused on data-centric security strategies for complex enterprise and industrial environments. With more than two decades at Fasoo, he has played a key role in advanced security frameworks for unstructured data, intellectual property protection, and resilient operations across highly regulated and technology-intensive industries. 

Prior to joining Fasoo, “Kang” held leadership roles at Doosan Information & Communications, where he gained extensive experience in enterprise IT systems, security architecture, and large-scale infrastructure environments. Over the course of his career, he has consistently focused on addressing real-world security challenges through integrating practical, foundational approaches with emerging technologies. 

”Kang” is a frequent speaker at industry and government-led security forums and has delivered presentations at events hosted by the Korea Information Security Industry Association (KISIA) and the Defense Intelligence Headquarters, among others. His recent sessions have addressed next-generation security and management strategies for unstructured data, as well as real-world implementations of global data security standards. He brings a pragmatic, field-tested perspective on building sustainable cybersecurity practices in complex supply chain ecosystems.