Security is always a hot topic. In today's blog i will reflect on how much security is essential for an enterprise. Without security, any organization whether small or large is prone to breaches. We hear every other day about the breaches in health companies, credit card numbers stolen, all this is a result of not a well thought out security layer in a companies infrastructure.
Whenever an organization starts their web presence that involves transactions, storing or transferring PII (personal data), they have to make sure to set up a well defined security layer that makes sure that the organization is protected from the phishing scams and breaches. That the data is well protected as it contains customer sensitive information.
According to the content in one of my class notes, there are five main areas of security for consideration
Whenever an organization starts their web presence that involves transactions, storing or transferring PII (personal data), they have to make sure to set up a well defined security layer that makes sure that the organization is protected from the phishing scams and breaches. That the data is well protected as it contains customer sensitive information.
According to the content in one of my class notes, there are five main areas of security for consideration
- Computing Security: Type of security that focuses on secure operations of the computers.
- Data Security : Ensuring that the data is secured and is protected from tampering.
- Application Security: Trying to prevent the errors and breaches in the security that can occur through errors in the design, development or deployment of an application.
- Information Security
- Network Security: Refers to the protection of network resources from unauthorized use. Intranet/ internal network security is essential for a company. This is essential because most of the companies assume that the breach in the security comes from external sources, but what they forget to take into consideration is the compromise that happens from within the system.
- Isolation: this is where the concept of firewalls come into picture. This is to isolate certain apps from the others. These help in isolating the apps from general usage or unauthorized success.
Depending on what the focus of the organization is, a combination of these security areas will be helpful to create a well defined security layer that will protect the enterprise from the outside breaches.
According to Wikipedia "Enterprise Information Security Architecture is the practice of applying a comprehensive and rigorous method for describing a current and/or future structure and behavior for an organizations security processes , information security systems, personnel and organizational sub units, so that they align with the organization's core goals and strategic direction."
No comments:
Post a Comment