Home Training Consulting News roomContact CIS  
 
Welcome to SACFiS
About CIS
Message from CEO
Mission-Vision
Core-Principles
Our Approach
Information Security
InfoSec Overview
InfoSec Benefits
SACfIS Services
Consulting
Training
Research
Outreach
Sectoral services
Government
Financial Services
Telecommunications
Mining/Utilties
Branches
Botswana
Ethiopia
Contact us
info[AT]sacfis.CO.ZA

 

Information security overview.


Information Security relates to tools and techniques that protect an organisation's valuable assets against loss, disclosure, or damage.

Iit is important to point out that InfoSec is only part of a comprehensive security effort

This concept of security applies to all information. In this context, the valuable assets are the data or information recorded, processed, stored, shared, transmitted, or retrieved from an electronic medium. The data or information is protected against harm from threats that will lead to its loss, inaccessibility, alteration, or wrongful disclosure. The protection is achieved through a layered series of technological and non-technological safeguards such as physical security measures, user identifiers, passwords, smart cards, biometrics, firewalls, etc. Security Objective:  

Information Security: Those attributes of a system that provide information and system assets protection

Confidentiality (protection from unauthorized view or possession)
Integrity (protection from unauthorized modification or removal)
Availability (having information and processes available when needed)
Confidentiality, Integrity, Availability is often shortened to “CIA”
Sometimes “Accountability” (knowing what, who, when, and how information is accessed) is added to the list of “CIA”, but accountability is more of a management issue rather than a security property.
Bottom line for you is keeping your
Business
Employees
Customers
safe, secure, and available.
Information Security is all about maintaining proper control over your information

The objective of information security is "the protection of the interests of those relying on information, and the information systems and communications that deliver the information, from harm resulting from failures of availability, confidentiality, and integrity".

For any organization, the security objective is met when:

    • information systems are available and usable when required (availability);
    • data and information are disclosed only to those who have a right to know it (confidentiality); and
    • data and information are protected against unauthorized modification (integrity). The relative priority and significance of availability, confidentiality, and integrity vary according to the data within the information system and the business context in which it is used.

 

 

South African Centere for Information Security in the News

June 2010 - Information Security Summit in Addis Ababa, Ethiopia. Executive brief on emerging threats and technical track on web application security and hacks. Registeration is open

Registeration is open

July 2010 - SACfIS to speak on 3rd Annual ITEX ICT Conference on Social Media and Security issues

May 2010 - SACfIS CEO to speak on 2nd Annual Kuwait ICT Security Forum in Kuwait City. He would present a key note on Offensive information cyberwarfare for business and government agencies.

July 2009 - SACfIS to partner with a prominent South African security consulting company Telspace. Telspace is a leader in penetration testing, web application and wireless hacking.

May 2009 - SACfIS CEO speaks at the annual IT WEB security summit. Beza presented a framework on offensive defensive strategy for engaging in information warfare.

February 2009 - SACfIS CEO speaks at 3rd Network and Endpoint security summit in Nairobi.

October 2009 - SACfIS CEO speaks at 2nd IT Governace and Audit summit in Nairobi, Kenya. Mr. Belayneh presented on current web application threats and key measures thta must be taken.

January 2009 - SACfIS CEO speaks on the need for ICT R & D capacity development in Brussels. He cited information security as a key area that requires support and strategic collaboration for increasing ICT uptake and trust in technology.

 

 

 

  


Upcoming Events
Botswana Internet Directory

Viruses
 Fraud/Fishing
 Spyware
 Identity theft
 Online dating scam
 Online banking
 SMS scam/spam
Definition of threats
Prevention overview
 All threats

Botswana Internet Directory
Define - cyber crime
History- cyber crime
Types-cyber crime
Cyber criminals
 Famous hackers
Organised crime
Safety tips
Security glossary

 

 
 
   
Home | About SACfIS | Services | Training | Consulting | Research | Press Room | Contact us |
 
© 2010 South African Centre for Information Security. All rights reserved.