What is Security

 ―The quality or state of being secure—to be free from danger‖

 A successful organization should have multiple layers of security in place:

 Physical security

 Personal security

 Operations security

 Communications security

 Network security

 Information security

Critical Characteristics of Information

 The value of information comes from the characteristics it possesses:

 Availability

 Accuracy

 Authenticity

 Confidentiality

 Integrity

 Utility

 Possession

NSTISSC Security Model

Components of an Information System

 Information system (IS) is entire set of software, hardware, data, people, procedures, and networks necessary to use information as a resource in the

organization