Professional Documents
Culture Documents
Information security: a well-informed sense of assurance that the information risks and controls are in balance. Jim Anderson, Inovant (2002)
What is Security?
The quality or state of being secureto be free from danger A successful organization should have multiple layers of security in place:
Physical security Personal security Operations security Communications security Network security Information security
C.I.A TRIANGLE
MACHINE INFECTED?
ACTION PLAN: 1) Write down the error or alert message verbatim inform your tech support team quarantine the machine 2) Look up the message in an authoritative anti-virus site (demo) diagnose the problem take recommended remedial action
NOTE #1
Search engines are NOT reliable sources of virus information
NOTE #2
Computer companies are NOT reliable sources of virus information
Computer companies:
Usually refer you to an anti-virus vendor are not in the anti-virus business themselves are victims!
Ethics Overview
Ethics is about how we ought to live*
The purpose of Ethics in Information Security is not just philosophically important, it can mean the survival of a business or an industry**
Thou shalt think about the social consequences of the program you are writing or the system you are designing.
Thou shalt always use a computer in ways that insure consideration and respect for your fellow humans.
-Courtesy of the Computer Ethics Institute, A project of the Brookings Institution