Today’s economy is about protecting the information assets which is essential to existence of an organization. After a major incident or a security breach it is unthinkable to say it is not going to affect your bottom line. Most of the organization has to comply with various standards and regulations and a breach in a state of non compliance will be business limiting factor, and the organization may be liable to contractual penalties and loss of potential business from current and future customers.
So Information Security Management System defined as a protection of information from various threats and risks on daily basis. Therefore mitigating information security risks are becoming a critical corporate discipline alongside with other business functions such as HR, IT or accounting.
Mitigating business risks not only improve the business efficiency but also maximize the return on investment and business opportunities.
It is a mistake to assume that information security is solely a technical problem left for IT to solve. These titles below are a non-technical discussion of security information management. It offers a framework that will help business leaders better understand and mitigate risks, prioritize resources and spending, and realize the benefits of security information management.
May 13th, 2011 7:15 am
I guess this is why cloud security is very essential nowadays. It helps to ensure the security of the clients’ data and applications and also to keep them protected while the customer must
ensure that the provider has taken the proper security measures to
protect their information.
May 13th, 2011 11:39 am
Well said, this is perhaps the most fundatmental reason to protect the consumer data from varous threats/risks. The security controls should follow the data no matter where the data is even in the cloud.
May 29th, 2011 11:02 am
I highly recommend the three books mentioned above. Anyone will learn a lot regarding information security management through those books.
June 12th, 2011 11:52 pm
Furthermore, for all who do not know ISMS, Information Security Management System is a set of policies concerned with information security management. The idioms arose primarily out of ISO 27001.
June 24th, 2011 10:06 pm
Not many are aware of the many other advantages that countries can offer to investors. One of these is of course is easy access to capital, probably one of the world’s best.
June 25th, 2011 4:54 am
Suggestions are very well accepted. Its good to hear that making sounds out of bell rings can be consider as a music.
February 19th, 2012 5:24 pm
[…] The Business Case for Information Security Management System […]