Professional Documents
Culture Documents
INTRODUCTION
Process
What assets?
information
technology
people
The cost?
Disruptions?
Organizational Character
Market Sector Character
Characteristics to Consider
Organization Characteristics
Size (employees, customers,
physical locations)
Complexity (organizational units,
products, services, processes,
systems)
Value & criticality of intellectual
prop. Information stored or
transmitted digitally.
Dependences on IT Systems,
impact of systems downtime.
Characteristics to Consider
Market Sector Characteristics
Potential impact to critical
infrastructure
Customer sensitivity to and
expectation for security & privacy
Potential brand and reputation
damage.
Cust. ability & likelihood to
switch to a competitor
Policies
Protection &
sustainability
Procedures &
Processes
Infrastructure
(supporting fasilities &
utilities)
Critical
assets
People (key
personsel with unique
knowledge & skills)
Financial management
& reporting
Business
Processes that
create:
Relationships to 3rd
party
CRM
Conclusion
The level of adequate security is changing
related to risk tolerance will be taken.
Achieving adequate security is continuous
process
Thank you