Information And Information Security Incidents - 3506 Words

In this day and age of interconnected worldwide business environments where information underpins the functionality of an organization, it becomes increasing important to secure information and information systems from a wide range of threats and vulnerabilities that affects the Confidentiality, Integrity, and Availability (CIA) of information. There has been a significant rise in information security incidents (Leakage of knowledge, valuable corporate information, personal information, etc.) over the years that compromise the confidentiality, integrity and availability of information and information assets of a particular organization and lead to a significant financial losses, reputational damage, operational downtime, loss of†¦show more content†¦The traditional security perimeter of the organization has now extended to include people, their devices and actions. Hence, organizations like MSD, must ensure the security of information and information assets by implementing a sophisticated organization-wide information security program that ensures protection of valuable corporate information. Recently, MSD has suffered significant financial and reputational damage because of actions of employees, leakage of trade secrets, and high employee (permanent/contractor) turnover (loss of IP). It is obvious that the threats posed by competitors has increased over time and MSD needs to immediately identify the gaps and ensure competitive advantage is not lost. Castle Security Consulting (CSC) provides comprehensive range of professional information security services in order to protect the confidentiality, integrity, and availability of critical corporate infrastructure, information, and the various information assets including knowledge and people. CSC consists of certified information security consults worldwide (covering each of MSD’s facilities in different countries) that possess the necessary expertise in delivering high quality information security services, based on international standards (ISO27001-06) from the perspective of: †¢ Information Security Risk Management †¢ Information Security Strategy †¢ Information Security Policy †¢ Information