|
|
|
|
Information is a strategic asset that organisations use throughout their life cycle. Indeed organisations are dependent upon information. In this information dependent world, the number of vulnerabilities has increased and the threats have become more sophisticated. The aim of an organization in the realm of information security therefore should be to prevent unauthorized disclosure, destruction, or theft of classified or proprietary information and assets. As such, "Information Security" will involve the development and implementation of policy and procedures concerning the preparation, dissemination, transmission, storage and disposal of classified and other sensitive information and material. The controls in an information world however must go beyond just written policies and procedures. The information security controls must encompass the use of technical and non-technical methods. Technical controls are safeguards that are incorporated into computer hardware, software, or firmware, such as access control mechanisms, identification and authentication mechanisms, encryption methods, intrusion detection software. Non-technical controls are management and operational controls, such as security policies; operational procedures; and personnel, physical, and environmental security. SecTec assists clients in ensuring that the appropriate information security controls are in place by providing:
In providing our services to clients we examine if you have clear cut policies and procedures and the right network security controls in place. We look at whether your information security program adheres to security best practices. We help you determine what are your information security strengths and weaknesses, plus identify if you protecting your most important business assets. In providing our services we seek to ensure that they are done without hindering your business processes or communication.
|
|
Copyright © 2009 SecTec Consulting LimitedWeb Site Design by Outdoor Business Group Limited
|
