When you register you will also receive:
- A Free Trial Membership which provides additional free research and help on your projects
- Access to survey data, contribute to our research, community involvement and much more
Implementing proper IT security policies, software, and equipment is vital to any enterprise. All enterprises have something of value that needs to be protected, regardless of the size of the company or their industry. At the very least, companies have services and infrastructure that hackers can exploit. Common exploits include using phone systems to place expensive long distance calls and using the network storage to host illegal Web sites. Governments and industry regulatory groups are aware of the importance of implementing a sound IT security system and many have put security requirements in place.
What is Security?
IT information security is the process by which enterprises protect their information, internal systems, and platforms from unauthorized use, theft, deletion, and unauthorized changes. Security is not about eliminating risks to the enterprise, it is about mitigating these risks to acceptable levels.
Already a member?
Please Login
4 Comments
Good overview.
We are about to review our security policy and the simplicity of division of components described in this article will go a long way towards simplifying what can become a nightmare policy document referencing myriad other policies
I would add encryption as a basic component of today's security requirements. It is not enough to simply protect against access or malicious code insertion/deployment but we must also have the basic components in place for a second level of defense in the event intrusion, etc., does indeed succeed.
Too simple and missed a lot of core areas even for a 101, e.g. encryption, end point security, asset control, removable media, update, etc. With a little more thought though it could be good.