INFORMATION SECURITY TRAINING
Information Security Training involves the definition, implementation, maintenance, and evaluation of a coherent system of measures that ensure the availability, integrity and confidentiality of the (manual and computerized) information provision. Preservation of Confidentiality, Integrity and Availability of information; in addition, other properties, such as authenticity, accountability, non-repudiation, and reliability can also be involved.
The transferring and processing of information takes places via an Information System. Every system whose purpose it is to transfer information is an Information System. Examples of Information Systems are files in filing cabinets, mobile telephones and printers. In the circumstance of Information Security, an Information System is the entire combination of procedures, rules and people that ensure the information supply for an operational process. Information Security Training provides assurance of Business Processes by enforcing appropriate Security Controls in all areas of IT and by managing IT Risk in line with Business and Corporate Risk Management Processes and guidelines.
What we learn:
- The various forms of Information and Information Systems
How Information Security is important for:
The Operational Processes: An Operational Process is the process that lies at the very heart of the business. In an Operational Process, people work on a product or service for a customer. An Operational Process has the following main components: Input, Activities and Output
The Information Architecture: Information has become an important production factor in carrying out Operational Processes.
Information Management: Information Management involves much more than the automated information processing carried out by an organization. In many cases, the external communication and communication with the media form part of the Information Management strategy.
An ISMS is a set of policies, procedures, processes and systems that manage information risks, such as cyber-attacks, hacks, data leaks or theft.