When cooperating with global automotive companies, there is something just as important as technological capability. That is security competency.

Thoroughly safeguarding not only operational information but also vehicle design drawings, research and development data, and prototypes directly translates into a company’s competitiveness.

By obtaining the internationally trusted certification TISAX (Trusted Information Security Assessment Exchange), CTR has now established a stronger foundation for collaboration with global partners.

Intended Audience: CTR OEM Division (CTR, CTR EcoForging, CTR China)

TISAX is an information security certification system for the automotive industry, initiated by the German Association of the Automotive Industry (VDA) and operated by the ENX Association. It is a standardized framework that evaluates and objectively certifies the security levels of multiple companies within the automotive supply chain according to a common set of criteria.

In simpler terms, it functions like a “global passport” that guarantees the reliability of security so that global OEMs and suppliers can collaborate with peace of mind.

On August 13, CTR held the TISAX Certificate Award Ceremony.

From left to right in the commemorative photo: Mr. Ji Sin-myung, CEO of DQS / Mr. Lee Dong-ok, CEO of CTR.

In this audit, CTR acquired the highest security level, TISAX Level 3.

Level 3 represents the most rigorous security management framework, which includes an on-site audit, and demonstrates the capability to protect sensitive customer information and intellectual property (IP) in compliance with international standards.

Another important point!

TISAX does not only assess by “Level,” but also by “Scope.” This scope can include “Prototype” (protection of prototypes, design drawings, and confidential research and development data).

CTR achieved both Level 3 and Prototype Scope at the same time.

This means that CTR has been recognized not only for its ability to securely protect internal company documents, but also for its capability to safeguard highly confidential assets such as design drawings, R&D data, and prototypes according to global standards.

In particular, when collaborating with global OEMs, obtaining Level 3 certification with Prototype Scope provides a significant competitive advantage.

While preparing for this certification, CTR focused heavily on meeting the requirements for prototype protection.

Although it was not strictly mandatory to include Prototype Scope, CTR made the forward-looking decision to establish the highest level of security coverage in anticipation of the future.

The requirements for prototype protection were closely tied to strengtheningphysical security, which involved measures such as replacing reinforced glass and installing a new access control system. This required considerable cost and time. Naturally, it was not something that could be accomplished in a short period, and for the field departments, it sometimes brought minor inconveniences in daily work efficiency.

Nevertheless, thanks to the understanding and proactive cooperation of employees, along with smooth communication with the security team, the project was carried out without major difficulty.

The project spanned approximately six months, from November 2024 to May 2025, and was executed across three domains: management security, physical security, and technical security.

- Information Security Team: Overall project leadership, responsible for the management security domain, including policy establishment, risk management, documentation, and audit response.

- Business Support Team: Responsible for physical security, including access control, facility security, and physical entry management.

- (Formation Labs)InfrastructureTeam: Responsible for technical security, including building network, server, encryption, and monitoring systems.

All teams worked in close coordination throughout the long process — from policy establishment → security reinforcement → internal inspection → external audit response. Although it was by no means an easy journey, the understanding and active participation of employees, together with smooth collaboration with the security team, enabled CTR to successfully secure Level 3 certification including Prototype Scope.

This TISAX certification process also included CTR CHINA! Through this, the necessity of strengthening the security framework in overseas subsidiaries was confirmed, and CTR plans to continue establishing management systems in CTR CHINA, CTR VINA, and other global subsidiaries, thereby gradually expanding a globally standardized security process.

This achievement today marks the first step in elevating the security standards of the entire CTR Group to a truly global standard.

Going forward, CTR will continue to provide a safe and trustworthy environment for collaboration and grow as a global mobility partner befitting its slogan: “Central to your safe mobility.”