Post on 28-Mar-2015
INFORMATION SECURITY
CONCLUSIONAnkit Sharma(Syndicate-B)
AN OVERVIEW
Concepts
People, Process and Technology
Frameworks and standards Laws, Regulations and Contracts
Associated Controls: Technical, Administrative and Physical
Audit and Operational Risk Management
CONCLUSION
• continuous process of exercising due care and due diligence to protect information.
• Due care- degree of care that a reasonable man would normally exercise.
• Due diligence- investigation of a business prior to signing a contract
• To protect information system from- a) Unauthorized access
CONCLUSIONb) Disclosurec) Destructiond) Modification• It involves-a) Ongoing trainingb) Assessmentc) Protectiond) Monitoring and detection• Thus Indispensable part of all business
operations in different domains.