INFORMATION SECURITY

CONCLUSIONAnkit Sharma(Syndicate-B)

AN OVERVIEW

Concepts

People, Process and Technology

Frameworks and standards Laws, Regulations and Contracts

Associated Controls: Technical, Administrative and Physical

Audit and Operational Risk Management

CONCLUSION

• continuous process of exercising due care and due diligence to protect information.

• Due care- degree of care that a reasonable man would normally exercise.

• Due diligence- investigation of a business prior to signing a contract

• To protect information system from- a) Unauthorized access

CONCLUSIONb) Disclosurec) Destructiond) Modification• It involves-a) Ongoing trainingb) Assessmentc) Protectiond) Monitoring and detection• Thus Indispensable part of all business

operations in different domains.