Describe the importance of informati on security for an orga

Describe the importance of informati on security for an organization, supporting with evidence. How could a lack of security affect not only consumers, but a company as well? Summarize two key information security practices you recommend the company implement. Provide supporting examples/research/justification using a real - world example (e.g., when a real company was hacked and what the outcomes were). Be sure to use appropriate IT terminology for security assurance.

Solution

Information is processed data and we organize and store information distributive or centrally. An information can be public or private. In today’s world, Information is everything. In IT world, All the information are stored securely and can be prevented by malicious intruders using some IT security Techniques.

To secure the information, we generally adopt two methods: (1) Authentication (2) Authorisation

Authentication is the process by which a system can authenticate the user to access the system. To authenticate the user a system use the biometric or demographic information of user. Such as user name and password, Face Recognition System, Retina Scanner, Finger Print Sensor.

The Authorization is the process by which a user is allowed to access the system or information for which he/she is authorized.

Many IT firms and big organizations hire hackers to find the security holes in their system. If any company or organization do not emphasis on security of data. The company’s information can be hacked and can be send to the rival company. So the rival company may use this information to make weak that company.

For any company or organization data/information is most valuable things and it must be secured. The information may contain products information, planning, patent applications, source code, and drawings.

It may contain financial information, including financial assessment. It may contain company’s customers or employees information including confidential information of customers which can not be revealed.

If customers’ information is leaked such as credit card details, it harms the company’s goodwill and credibility.

A data integrity failure might result in a Trojan horse being planted in your software, allowing an intruder to pass your corporate secrets on to your competitors. If an integrity failure affects your accounting records, you may no longer really know your company’s true financial status.

To Protect Security Breaches:à

Real World Examples of Security Breach in a Company:-->

Yahoo hack: 1bn accounts compromised by biggest data breach in history.

The hacker stole the confidential information of users, email Ids, Passwords etc.. The result was that so many users has been migrated off of yahoo mail. Now the customer do not want to rely on yahoo mail and they do not want to put their confidential information on yahoo’s server. It is the very big loss for yahoo for its credibility and financialiy.