Na yu, infomasion aset em savse save kam lon kainkain wei lon valu blon em lon bisnis-kritical igo olsem liklik o ino impotent, na infomasion risk managemen em ol deisgnim lon lukim na differentiatim namel lon ol.
Assessmen critiria
Aessesim ol infomasion aset wei em stap insaot lo organsasion igo aganst lon ol dispela critiria:
-
Confidentialiti
Dispela confidentialiti blon ol infomasion kain olsem HR o peirol recod, finansal akount, customa infomasion na intelectual properti. kain olsem, sapose employee o customa pesonal detail em ino stap stret, dispela gen constitutim olsem breash blon infomasion protecsion regulasion.
-
Integriti
Dispela integriti blon infomasion mas gat accuraci na stap wei em maintainim key funcsion blon organisasion blon organisasion, kain olsem design na manufacturim infomasion, task-specfik helth na safti infomasion o finansal reportim lon case blon wanpela listed kompani. Kain olsem, sapose wanpela competito o employee husait em belhevi acessim na sanisim ol infomasion, ol impack blon em bai bigpela stret.
-
Availibiliti
Dispela avialibiliti em blon infomasion taim em requirim, kain olsem ol employee time shet lon pinis blon mun, o producsion line operatim infomasion lon wikdei 8.00am igo lon 6.00pm, 50 wiks lon wanpela yia. Sapose ol kain infomasion ino stap lon ol dispela ol kain taim, em bai givim bigpela hevi tru. Kain olsem, sapose taim shet recod em hat lon acessim, ol employee inonap kisim pei.
Dispela acronim ‘CIA’ mekim ol dispela critiria easi lon tingim.
Taim yu assesim dispela ol infomasion, mekim wanpela valu judgmen lon ol rosk em sa kamap lon dispela infomasion wei em compromisim aganst CIA critiria na level blon severiti blon dispela consequense.
Bisnis impact analysis
Lon assesmen blon infomasion aset blon yu, yu bai igat gutpela skelim lon producim wanpela bisnis impact analysis, wei em showim ol repecktiv risk na consequense, wei em finansal, human, logistikal o reputasional.
Na tu, em bai enablim yu lon managim dispela ol risk lon lon maner wei em appropriat igo lon organisasion blon yu wei yu selectim na justifyim ol mos suitabal countamesa olsem pat blon infomasion securiti strategi blon yu. Dispela bai includim analysim cos blon dispela countamesa wei em proporsional igo lon impak blon ol thret wei em ol designim lon mitigatim. Havim ol resonable mesa stap gen providim nogat garante wei wanpela unathroise parti – waintaim strongpela motiv na deteminasion – bai inonap sucessfuli acessim infomasion wei ol gat intres lon em.
Na tu, em nogat countamesa wei necesasri lon safegardim againstim ol kain risk, tasol yu bai igat knoledge na luksave lon ol dispela kain consequense.
Infomasion risk managemen mas kamap lon olgeta taim, o mas reflectim sanis blon ol type blon infomasionwei em stap, bisnis structa na ol newpela na kainkain thret em kamap.