What Is Information Assurance and Security?

Information assurance and security is the management and protection of knowledge, information, and data.

- The basic components of information security are most often summed up by the so-called CIA triad: confidentiality, integrity, and availability. Confidentiality is perhaps the element of the triad that most immediately comes to mind when you think of information security.


-Certification programs are designed to give students mastery over a narrow subject area or topic. These programs are offered in many trades, professional fields, and academic areas and are available at both the undergraduate and graduate levels.


-Governance is concerned with structure and processes for decision making, accountability, control and behavior at the top of an entity. While Risk management allows organizations to attempt to prepare for the unexpected by minimizing risks and extra costs before they happen.


Security architecture is a unified security design that addresses the necessities and potential risks involved in a certain scenario or environment.


Business Continuity planning is the process involved in creating a system of prevention and recovery from potential threats to a company. While the disaster recovery planning is a formal document created by an organization that contains detailed instructions on how to respond to unplanned incidents.

- Physical control is the implementation of security measures in a defined structure used to deter or prevent unauthorized access to sensitive material. Examples of physical controls are: Closed-circuit surveillance cameras. Motion or thermal alarm systems. Security guards.

Operations security concerns the security of systems and data while being actively used in a production environment.

-Law, the discipline and profession concerned with the customs, practices, and rules of conduct of a community that are recognized as binding by the community. Enforcement of the body of rules is through a controlling authority.

-The idea of an active effort to find out something. An investigation is a systematic, minute, and thorough attempt to learn the facts about something complex or hidden.

-Ethics is a system of moral principles. Ethics is concerned with what is good for individuals and society and is also described as moral philosophy.

-(Technical controls) use software and data to monitor and control access to information and computing systems. Passwords, network and host-based firewalls, network intrusion detection systems, access control lists, and data encryption are examples of logical controls
H2
H3
H4
3 columns
2 columns
1 column
Join the conversation now
Ecency