photo by: vladimir tatarevic

Information Security

Information security involves maintaining the confidentiality, integrity, availability, authenticity, irrevocability and reliability of all forms of information: spoken, written and electronic.

Information security management process (ISMP) includes establishing, implementing, operating, monitoring, reviewing, maintaining and improving desired level of information security in an organization. It has two important goals:

  • To identify the information system security requirements
    • identify and monitor the information system security requirements based on the results of the information system risk assessment
  • To maintain information system at the appropriate security level
    • to establish multilayer security controls for each of the identified risks: preventive, detection and corrective controls.

The adoption of an ISMP should be a strategic decision for an organization. The design and implementation of an organization’ ISMP is influenced by their needs and objectives, security requirements, the processes employed and the size and structure of the organization.

Belox information security management methodology is based on international standard ISO/IEC 27001 („Information technology - Security techniques - Information security management systems - Requirements”), which is the leading international standard for information security today. It is focused on protecting the confidentiality, integrity and availability of information.

Organizations that base their information security on ISO/IEC 27001, regardless of whether they are certified or not, can be sure that they addressed all organization-specific aspects of information security — aspects that matter to their business outfits.

Our consulting services include:

  • definition of Information security management process
  • definition of Information security policy
  • training and couching activities..

Business is more exciting than any game.

Lord Beaverbrook