Protecting Our Data, Securing Our Operations
Protecting our people and securing our assets are the goals of our security and cybersecurity programs. We monitor our onsite locations and IT infrastructure and network systems consistently for safety and security across our assets.
Physical Security
Our on-site security personnel include Chesapeake employees as well as third-party partners, many of whom are off-duty law enforcement officers. These security team members have established relationships with local first responders, as well as state and federal officials, for a joint approach to keeping Chesapeake sites and surrounding communities safe. All employees and contract security personnel are bound by our Code and compliance to our Human Rights Policy.
Site personnel (whether employees or contractors) must abide by our policies governing health, environment, safety and human rights. These policies and procedures prohibit the possession or use of weapons, drugs or alcohol on company property and other undesirable or illegal workplace behaviors including money laundering and the financing of terrorism. Any employee or partner not following these policies, or otherwise threatening the safety of our operations, will be removed.
Our areas of operations are regulated by U.S. law, mitigating material risks related to security threats, terrorism or armed conflict, and company attacks.
Managing Cybersecurity Risks
Network and Application Security
Protecting company networks and applications from attack and inappropriate access
Data Protection
Preventing data breaches and ransomware attacks through security layers and threat hunting
Risk and Compliance
Managed as an enterprise risk, accountable to top company leadership
Identity and Access Management
Protecting the attributes of individual digital identities
Incident Response and Business Recovery
Cohesive planning to respond quickly and minimize impact
Cybersecurity Awareness
Training employees and contractors to help prevent cyber events
Managing Cybersecurity Risks
Information technology touches all aspects of our operations and cybersecurity risks continue to evolve. We understand these risks and are proactive about the security of our assets and the welfare of our employees. Through a comprehensive protection and defense strategy, we continue to improve upon an extensive framework of controls to detect, identify and protect against potential cyberattacks.
Chesapeake strategically partners with industry leaders in cybersecurity technology as well as federal and private cybersecurity sector organizations to maintain readiness and resilience across our information systems. We have had no major cybersecurity breach or system compromises in the last three years.
While employees are often at the front lines of our cybersecurity protection, accountability reaches to the top of our organization. Our Cybersecurity team provides regular updates to senior leadership and our Board’s Audit Committee about cyber threats, potential vulnerabilities and the proactive security programs in place to protect our operations.
