How can we know whether the information of our organisation is safe?
You can check by using the following statements to determine if the information of your organisation is safe: • Whether my organisation is confident that our web server is properly protected and managed by well-trained people • Whether my organisation has a clear policy on who is allowed to access what information • Whether my organisation has designated personnel for information security management • Whether my organisation has employed security tools such as firewalls and encryption tools • Whether my organisation has plans for emergency response and disaster recovery, and whether these plans are reviewed regularly to ensure they tie-in with the business continuity plan If the answer to some of these statements is no, your organisation may still posses a number of security holes that are exposed to threats.
