Key Takeaways
- KT Corporation launched an external Information Security Advisory Committee composed of top domestic experts to strengthen governance amid AI-driven digital transformation.
- The committee focuses on proactive threats like AI-based attacks, generative AI attacks, and access control systems and global compliance.
- This initiative builds on KT’s earlier privacy advisory committee, reflecting a layered approach to fortifying information security and personal data protection.
- CEO Park Yoon-young framed information security as a fundamental customer promise in the "AX era," aiming to position KT as South Korea’s safest and most trusted AI Transformation (AX) platform.
- The move underscores growing industry recognition that robust security governance requires specialized, cross-sector expertise to counter evolving cyber threats in cloud and AI environments.
KT Corporation Establishes External Expert Committee to Fortify Information Security Governance
KT Corporation announced on the 12th the launch of its Information Security Advisory Committee, an external panel of leading experts designed to enhance the company’s information security governance framework. This initiative directly responds to the escalating complexity of cyber threats fueled by the rapid adoption of Artificial Intelligence (AI) and cloud computing technologies. By forming this committee, KT aims to move beyond reactive security measures and implement a proactive, strategically grounded defense posture capable of anticipating and mitigating emerging risks before they materialize into significant breaches or disruptions. The committee’s establishment signals KT’s commitment to treating information security not merely as an IT function but as a core pillar of its overall business strategy and customer trust initiative, particularly as it advances its AI Transformation (AX) vision.
Committee Composition Leverages Deep Domestic Expertise Across Critical Domains
The advisory committee comprises seven distinguished professionals selected for their specialized knowledge spanning the multifaceted landscape of modern information security. Its members include Park Choon-sik, Director of the Korea Zero Trust Security Association; Jeong Eun-su, Professor in the Department of Digital Security at Cheongju University; Kwak Jin, Professor in the Department of Cybersecurity at Ajou University; Yoon Myeong-geun, Professor in the School of Artificial Intelligence at Kookmin University; Kim Hong-sun, Advisor at Kim & Chang; Park Cheol-jun, Professor in the Department of Computer Science and Engineering at Kyung Hee University; and Choi Gwang-hee, Advisor at Shin & Kim LLC. This deliberate blend of expertise covers critical areas: policy and institutional frameworks (Park Choon-sik, Kim Hong-sun), technological and technical security foundations (Kwak Jin, Park Cheol-jun), industry-specific service implications, AI-specific security challenges (Yoon Myeong-geun), Zero Trust architecture principles, and legal/compliance perspectives (Kim Hong-sun, Choi Gwang-hee). Such diversity ensures the committee can provide holistic, well-informed guidance tailored to KT’s complex operational and strategic needs.
Agenda Targets Proactive Defense Against AI-Era Threats and Systemic Vulnerabilities
The committee’s mandate is explicitly forward-looking, focusing on developing mid- to long-term strategies to address anticipated security challenges. Key agenda items include crafting response strategies for future threats, particularly those leveraging AI itself – such as sophisticated AI-based attacks and the malicious misuse of generative AI technologies. It will also advise on policies governing the secure introduction and utilization of AI-powered security tools, a critical area as defensive AI becomes increasingly vital. A major focus is building and refining a Zero Trust-based security architecture, involving upgrades to authentication protocols, granular access control mechanisms, and continuous monitoring systems to enforce strict "never trust, always verify" principles. Furthermore, the committee will strengthen defenses against persistent advanced threats like Advanced Persistent Threats (APT) and ransomware, develop measures to prevent initial breaches and halt repeat incidents, review compliance with relevant legislation such as the Act on Promotion of Information and Communications Network Utilization and Information Protection, assess global regulatory alignment, and foster expanded collaboration between industry, academia, and government to cultivate a more resilient national security ecosystem.
Building on Prior Privacy Focus to Create Layered Security Expertise
This Information Security Advisory Committee launch follows KT’s earlier initiative in the first half of the year to establish a separate Privacy Advisory Committee dedicated specifically to personal data protection. The sequential creation of these two specialized external panels – one addressing broad information security governance and another zeroing in on privacy compliance and data protection ethics – demonstrates a deliberate, layered strategy by KT to deepen its expertise across interconnected but distinct security domains. By seeking external counsel on both fronts, KT acknowledges that robust personal data safeguarding is a critical subset of overall information security, yet requires nuanced attention due to evolving privacy regulations (like GDPR influences and local PIPA) and heightened consumer expectations. This dual-committee approach allows KT to tackle security holistically, ensuring technical defenses align with privacy-by-design principles and regulatory obligations, thereby reducing both breach risk and potential reputational or legal fallout from mishandled sensitive information.
CEO Frames Security as Core Customer Promise in the AI Transformation Era
KT CEO Park Yoon-young articulated the strategic significance of the new committee by linking information security directly to the company’s customer value proposition in the evolving technological landscape. He stated, "In the AX era, information security goes beyond technology and represents the most basic promise a company makes to its customers." This statement positions security not as a cost center or compliance checkbox, but as foundational to trust and brand integrity, especially as KT pushes its AI Transformation (AX) agenda – integrating AI deeply into its services, infrastructure, and customer interactions. The CEO further emphasized the commitment to operationalizing this vision: "We will complete a prevention system based on Zero Trust and make KT the safest and most trusted AX Platform Company in South Korea." This frames Zero Trust architecture not just as a technical upgrade, but as the essential mechanism for delivering on the promise of security in an AI-pervasive world, where traditional perimeter defenses are inadequate against threats originating from or exploiting AI systems and cloud environments.
Strategic Implications: Proactive Governance as Competitive Necessity in Digital Age
KT’s initiative reflects a broader and necessary shift among leading corporations, particularly those at the forefront of digital innovation like telecoms and cloud providers, toward elevating information security to a strategic board-level concern governed by specialized external insight. The accelerating digital transformation, heavily reliant on AI and cloud services, introduces novel attack vectors and amplifies the potential impact of breaches – making historical, reactive security approaches insufficient. By institutionalizing advice from experts spanning policy, technology, AI, law, and industry, KT aims to embed anticipation and resilience into its security DNA. This proactive stance seeks to mitigate risks associated with AI adoption (like data poisoning or model theft), ensure compliant and ethical AI deployment, fortify cloud-native infrastructures via Zero Trust, and ultimately safeguard customer trust and operational continuity. The emphasis on industry-academia-government cooperation further highlights KT’s recognition that cybersecurity is a collective challenge requiring shared threat intelligence and coordinated standards, positioning the company not just as a secure service provider, but as an active contributor to strengthening South Korea’s overall national cyber resilience in the AI epoch. This move could set a benchmark for how major corporations structure expert oversight to navigate the intricate security demands of the AI-driven future.

