Information Security Roles and Responsibilities

Transcript

Note: Transcripts are generated using speech recognition software and may contain errors.
Information security roles and responsibilities. A security policy is a formalized statement that defines how security will be implemented within an organization. It describes the means the organization will take to protect the confidentiality, availability and integrity of sensitive data and resources. It often consists of multiple individual policies. The implementation of a security policy to support the goals of the CIA triad might be very different for a school or multinational accountancy firm or a machine tool manufacturer. However, each of these organizations or any other organization in any sector of the economy, whether profit making or non profit making, should have the same interest in ensuring that its employees, equipment and data are secure against attack or damage.