For many organizations their dependence on information systems, both within the company
and networked up and down their supply chain, is now business critical. Any sustained loss
of availability of these systems would threaten the very existence of the business.
Security is a holistic issue. Vulnerabilities in physical, personnel and electronic
security all need to be addressed with equal commitment. Too many businesses still focus
on physical security without sustaining even basic precautions in personnel and electronic
security. For example, a recent survey of IoD members highlighted that only 90 per cent of
respondents with broadband access to the internet used firewalls to protect their systems
and information. Similarly only 75 per cent kept those firewalls up to date.
Simple, well designed security precautions need not place onerous burdens on the staff
or operation of a business – indeed, if they do they will tend to prove useless because they
will be circumvented and disregarded. Winning the hearts and minds of employees at all
levels is an essential first step, complementing the technology solutions that are deployed.
This book outlines the basic steps that all businesses, of whatever size, should be
taking, both to protect the operation of their information systems and to ensure that they
remain compliant with their increasing legal responsibilities.
When we go home from an office or factory at night we would not dream of leaving the
doors and windows open and the safe unlocked. Yet all too often, in terms of online security,
organizations are doing exactly that. This book should leave no business in any doubt about
the need for action on this key business issue of our times – and gives clear, practical advice
on the steps they need to implement.