Information security

To protect your organisation's information, you have to understand its value, and how it could be threatened.


Identify your vulnerabilities and threats

You need to think about the vulnerabilities and threats you face and their impact on your organisation.

Assess the risks

Once you understand the value of your information and the vulnerabilities and threats you face, assess the risks and identify the appropriate security measures you will adopt.

Assess your existing security measures

Assessing your current security is the first step in planning an information security management programme.