Hello All
With continuation of part 1, we are going to cover the below topic as a part of Security Operation - Series.
Information Security
Information security is a process and tools which is designed to use in terms of protection and safe guarding the information is known well as "security"
Area of focus
CIA - Is the main area, where information security has to focus on
- Confidentiality
- Integrity
- Availability
This is also called CIA TRIOD. The CIA triod is a common model that forms the basics for development of security systems
This CIA model's are used for finding vulnerabilities and method of creating solutions.
When the three standards have been met, the security profile of the organisation is stronger and better equipped to handle the security threat incidents
What is confidentiality
Only authorised people can access the information to maintain the confidentiality. Example: RBAC
What is integrity
Only authorised people cal edit or alter the information to maintain the integrity. Example Security Policy, conditional access policies, ACL, etc
What is Availability
Information must be available on demand ,whenever its required - Example : Security Policies
Chief Security officer (CSO)
CSO is responsible for the organisation information security polices and controls
Business Units on information Security
Comments
Post a Comment