A Guide to Information Security For The Small Business Part 1


What is Information Security?

Information Security is all about protecting information and information systems from unauthorized access, use, disruption, or destruction.


Three widely accepted elements of information security (mnemonic – “CIA”) are:


To make sure that the information is only accessed by people who need to and not available to anyone else.


To makes sure that the information is accurate and up to date and has not been modified inadvertently


To make sure that the information is available when it is needed and is not susceptible to crashes, hardware failure etc

 You will never make information 100% secure

This is a simple fact. Your systems will always have a certain level of vulnerability and threat. The secret is to manage the risks from these threats and vulnerabilities in a defined way.


There is never one single solution to Security

Effective Security uses a layered approach –

Download or free Information Security Review Tool Free Information Security Questionnaire Template

See Part 2 of our Guide to Information Security