Proposal for an Information Security Awareness Program

Risks to the confidentiality, integrity and availability of organizational information assets are constant, but to develop on a daily basis. Citizens must be informed and direct threats to the security of information against them are willing to share their computer and, ultimately, their way of life. These threats take many forms, but all in some categories defined and identifiable form. Ability of an individual to distinguish between benign and a real incident informationThreat or risk is based on the breadth and depth of training for security awareness they received.

Suggests that the Information Security Awareness Program for employees of your company evolved to provide them with information about the security risks they face, while the use of organizational information assets, and education in a broader sense, their personal information, a wise move in order to make the IT manager. An awareness program can be developed in conjunction with the implementationA comprehensive IT governance methodologies such as COBIT or as a standalone program, depending on the maturity of your IT organization.

Firewall, intrusion detection and intrusion prevention systems, although not a requirement for the network of today, fully defend an organization of current threats. Organizations must therefore ensure that they are their employees, suppliers, partners and subcontractors, do not leave the organization vulnerable to different risks, such as business interruptionDisturbances, loss of precious information, public embarrassment or legal liability due to a lack of awareness of information security.

Not only is there a clear need from a practical point of view, to make sure that people can be adequately and sufficiently funded to protect the organizational structure and activities of personal information, but depending on the branch of your organization is also regulatory requirements such as HIPAA and SOX do. Development andThe implementation of a program of information security awareness should ensure also announced a compulsory component of the annual update to promote a safety culture among employees.

And security has become a major concern among information technology professionals and the care of shared, will benefit the organization as a whole. Top-down and management support for the survival of the program and the goal of create a culture fundamentalInformation security awareness within the organization. The program could also be an important part of the show that performs due diligence management, corporate information assets.

This entry was posted on Sunday, January 17th, 2010 at 5:10 pm and is filed under Itil Availability Management Articles. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.