The Importance Of eSecurity In The Overall eStrategy Of An Organisation

نویسنده

  • Aleksander Iinigoj
چکیده

Information security strategy is necessary in organizations in order to determine their risks and providing suitable policies and procedures for appropriate controls and countermeasures to manage those risks. Still too often the human factor is underestimated and people do not know how to choose safe passwords, how to react when they find out about a security breach, all that due to the fact that they are not properly trained or educated. Information security is not just a technical issue but also a policy and human issue that requires the use of technology to protect the business information. Our goal should be to clearly define roles and responsibilities of information security officer and all employees in an organization to improve overall security and the protection of that information. 1 The Need For A Clear Strategy Our society has undergone a profound change. Information systems and information infrastructure in companies have considerably changed in recent years and became more distributed, and as such, much more complex to manage. Business information is dispersed, as local area networks and departmental systems have replaced the centralised mainframes. Only 15% of employees had access to corporate data in 1985, but by year 2000 the number had risen to over 85% (Yapp, 2000, p. 23). Information is an important asset which has a value to an organization and therefore needs to be well protected (ISO/IEC 17799:2000). The increased dependence of organizations on information and communication technologies and the changed business model due to globalisation and internationalisation has rapidly increased the need for systematic and professional protection of that information. Information security becomes now more complicated and is not restricted only to maintain confidentiality, availability and integrity, but we need to put strong emphasis also on responsibility, integrity and people (Dhillon, p. 1, 2001). Most companies, do not have a written information security policy or e-security strategy, nor they have authorized people that are responsible for information security management.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

O-44: Characterisation of Monotreme CaseinsReveals Lineage Specific Expansion of an AncestralCasein Locus in Mammals

Background: One important reproductive characteristic of Mammals is the production of milk to nurse the neonate. In order to better understand the evolution of milk we have investigated gene expression in milk cells from monotremes which are the most ancient representative of the mammalian lineage. Materials and Methods: Using a milk cell cDNA sequencing approach we characterise milk protein se...

متن کامل

Knowledge Translation in Healthcare – Towards Understanding its True Complexities; Comment on “Using Complexity and Network Concepts to Inform Healthcare Knowledge Translation”

This commentary argues that to fully appreciate the complexities of knowledge transfer one firstly has to distinguish between the notions of “data, information, knowledge and wisdom,” and that the latter two are highly context sensitive. In particular one has to understand knowledge as being personal rather than objective, and hence there is no form of knowledge that a-priori is more authoritat...

متن کامل

An Assessment of National Maternal and Child Health Policy-Makers’ Knowledge and Capacity for Evidence-Informed Policy-Making in Nigeria

Background There is increasing interest globally in the use of more rigorous processes to ensure that maternal, newborn, and child health (MNCH) care recommendations are informed by the best available research evidence use. The purpose of this study was to engage Nigerian MNCH policy-makers and other stakeholders to consider issues around research to policy and practice interface and to assess ...

متن کامل

The essence of knowledge management in the air transportation sector

With the modern development and increasing competitiveness of air transport business processes, the management of knowledge is essential most especially for air transport managers. This controls compounded phases of the organization which begins with the fabrication of organisational strategy towards value creation and improving customers` experience. This study was to explore the review on the...

متن کامل

The Paradox of Intervening in Complex Adaptive Systems; Comment on “Using Complexity and Network Concepts to Inform Healthcare Knowledge Translation”

This commentary addresses two points raised by Kitson and colleagues’ article. First, increasing interest in applying the Complexity Theory lens in healthcare needs further systematic work to create some commonality between concepts used. Second, our need to adopt a better understanding of how these systems organise so we can change the systems overall behaviour, creates a paradox. We seek to m...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2004