The National Intelligence Service (NIS) (Korean: 국가정보원, Gukga Jeongbowon) is the Republic of Korea's principal intelligence agency, headquartered in Naegok-dong, Seoul. It reports directly to the President and is overseen by the National Assembly's Intelligence Committee.
The agency traces its lineage to the Korean Central Intelligence Agency (KCIA), founded in 1961 under Park Chung-hee, which was renamed the Agency for National Security Planning (ANSP) in 1981, and finally restructured as the NIS in 1999 under President Kim Dae-jung as part of broader democratic reforms intended to curb its domestic political role.
The NIS's statutory mandate, set out in the National Intelligence Service Act, covers:
- Collection and analysis of foreign and North Korea-related intelligence
- Counterintelligence and counterterrorism
- Cybersecurity and protection of national cryptographic systems
- Investigation of certain offenses under the National Security Act
On the cyber front, the NIS operates the National Cyber Security Center (NCSC), established in 2004, which coordinates responses to cyberattacks on public-sector networks and has publicly attributed numerous intrusions to North Korean actors such as the Lazarus Group, including the 2014 Korea Hydro & Nuclear Power breach and cryptocurrency thefts.
The NIS has a long and contested political history. It has been repeatedly implicated in domestic scandals, most notably the 2012 online opinion-rigging operation in which agents posted comments favoring presidential candidate Park Geun-hye; former director Won Sei-hoon was convicted in connection with the case. Former directors Lee Byung-ho and Nam Jae-joon were also prosecuted for diverting NIS funds to the Park Geun-hye Blue House.
In 2020, the National Assembly passed amendments stripping the NIS of its domestic anti-communist investigation powers, with the transfer of counterintelligence authority over North Korea-related cases to the Korean National Police Agency taking full effect in January 2024.
Example
In 2023, the NIS publicly accused North Korean hackers of breaching South Korean shipbuilders involved in naval projects, prompting joint advisories with the U.S. FBI and NSA.
Frequently asked questions
The NIS reports directly to the President of South Korea and is subject to legislative oversight by the National Assembly's Intelligence Committee.
Keep learning