Visitors Edition
Already a member? Sign In.

Need help? Our Trial Membership program will get you help on any IT project you're working on. You'll get access to our research, tools, advice and project help.

Start Trial Membership Learn More

Membership Help?

Want to learn more about our membership options, pricing, or to get a product demo? Get in touch with one of our reps using an option below.

I Want Help with a Membership Live Chat

IT Security 101

More Details
  • Print
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn

Access this Note FREE by giving us your email address.

When you register you will also receive:
  • A Free Trial Membership which provides additional free research and help on your projects
  • Access to survey data, contribute to our research, community involvement and much more

Implementing proper IT security policies, software, and equipment is vital to any enterprise. All enterprises have something of value that needs to be protected, regardless of the size of the company or their industry. At the very least, companies have services and infrastructure that hackers can exploit. Common exploits include using phone systems to place expensive long distance calls and using the network storage to host illegal Web sites. Governments and industry regulatory groups are aware of the importance of implementing a sound IT security system and many have put security requirements in place.

What is Security?

IT information security is the process by which enterprises protect their information, internal systems, and platforms from unauthorized use, theft, deletion, and unauthorized changes. Security is not about eliminating risks to the enterprise, it is about mitigating these risks to acceptable levels.


Already a member?
Please Login

6 Comments

  • Missing_comment
    Nancy Ridenhour | 01-05-2010

    Good overview.

  • Missing_comment
    Yvette Canham | 01-06-2010

    We are about to review our security policy and the simplicity of division of components described in this article will go a long way towards simplifying what can become a nightmare policy document referencing myriad other policies

  • Missing_comment
    Ronnie Mize | 01-22-2010

    I would add encryption as a basic component of today's security requirements. It is not enough to simply protect against access or malicious code insertion/deployment but we must also have the basic components in place for a second level of defense in the event intrusion, etc., does indeed succeed.

  • Missing_comment
    Andrew Porter | 02-10-2011

    Too simple and missed a lot of core areas even for a 101, e.g. encryption, end point security, asset control, removable media, update, etc. With a little more thought though it could be good.

  • Missing_comment
    Sami Mousa | 01-30-2013

    Also missing authentication, CA, Froniac, Layer of Defense... need more work

    • 1f30bc908bc68cb3217f4e2c787058d4_comment
      Info-Tech Research Group | 01-31-2013

      Thank you for the comment. While this brief article is, as titled, intended as a "Security 101," the topics that you and others have commented upon are important ones. Info-Tech continues to develop and extend its security research agenda, and will look to provide additional coverage of those topics, where they are not already covered in other publications.

Related Content

Tags

firewall, IT security, physical security, e-mail security, IPS, desktop security, data security, security strategy, security awareness, Intrusion Prevention System, Enterprise security, corporate security policy, security planning, employee security education, document security, Intrusion, security document