LEGAL ISSUE IN SECURITY POLICY OF INTERNATIONAL COMPANY : A LEGACY APPLICATION SETTING, COMPARATIVE STUDY OF EU PERSPECTIVE and US LAW TRADITION
March 4th, 2010Research Project
Security plays a big part in today’s world of computer, e-commerce and the internet. By the advent of the Internet and networking, there has been a huge potential for expanding the way that businesses communicate and share data, provide services to clients and process information to increase their efficiency and lower production costs. It is now possible to interconnect two partner companies in order to share data in real time, to hold conferences with people who are geographically separated and to place orders and update inventory in real-time.
Unfortunately, the security of information is at risk by simply being stored and accessed on a networked computer. The risk of an incident is even more significant when multiple people will be legitimately modifying, updating, and otherwise accessing the data on these systems.
As these threats have increased, security has become a priority for companies, where companies hold large amount of personal information about its costumers or clients, keeping the information private is top priority. A Security policy is needed to inform user and staff members about the need of their responsibility to process the organizations technology and critical information. Security policies inform employee of the guidelines processing company and asset. Security policies also serve as good foundation for conducting audits of the network and its resources. Developing a security policy will help to define strategic goals, to identify critical assets, and to uncover potential vulnerabilities and/or existing vulnerabilities.