The Importance Of Information Security

1132 Words3 Pages

I would like to start this essay by defining Information Security, and to do so I went to visit one of the most internationally authoritative IT Governance associations, ISACA. "ISACA defines information security as something that: Ensures that within the enterprise, information is protected against disclosure to unauthorized users (confidentiality), improper modification (integrity) and non- access when required (availability)." (, 2017)
With confidentiality we refer to information that can be accessed only by authorized people. For instance, the use of passwords to access to software/files, or a personal badge used to access specific areas of the building. Integrity is directly connected to confidentiality and refers to accuracy
Information Technology (IT) Security

Essentially the role of the Information Technology (IT) Security is to guarantee confidentiality, integrity, and availability by putting in place all of those instruments, tools, methodologies, resources, standards, policies, procedures, guidelines, risk assessment, annual internal audit, incident management, and change management inside the organization in order to mitigate risk. In other words, depending on the dimension, type of business, number of employees, type of information created by
Generally, finance and human resource departments are key areas where people work with highly sensitive and confidential data. All the information in these areas must be protected. To do that, companies use modern systems that should be aligned with security compliance and standards in order to guarantee confidentiality, integrity, and availability. The use of logins and complex passwords is a typical example of security measures in a system. Lastly, all the people involved in the company business, such as employees, security resources, suppliers, and stakeholders should be aware of the security policies and

Open Document