Last Thursday morning over 40 organisations came to discuss Information security in Dublin's City center.
With a list of professionals from various backgrounds, it was a discussion that everyone was able to learn from.
Our first speaker was Michael Brophy. Michael is Chief Executive Officer with Certification Europe and is involved in information security for Government, Military and other Business Sectors .
Michael spoke about the "Three Pillars of Information Security". He presented what InfoSec actually is, contrary to popular belief. Generally, people fixate on the "Security" part of the title. They see it as a system of how to keep all information locked away and not to be touched. But what is forgotten are the 2 other elements.
- Availability - Organisations need to have their information available. If you run a customer services center and a client rings in to hear that they cannot reach the client's account or profile, this is a serious information security incident. Information needs to be available to those that need it, when they need it.
- Integrity - To use the same analogy, if the client is being told information about another customer's account, that information is not accurate. Therefor the integrity of their information needs to be secure.
- Confidentiality - The most familiar element of InfoSec. There must be a structured system on the process of the company's and client's information which is secure, accurate and accessible.
Next up we heard from Paul Hogan. Paul is director of Ward solutions - an information security consultancy firm.
Paul shared his insights to Cloud computing and the secure transition to "The Cloud".
The event came to a close with Eoin Hamilton explaining some of the steps your organisation can take towards gaining ISO 27001 certification. He demonstrated how it does not need to be an "All or Nothing" approach. There are significant steps you can take before becoming certified where you will see immediate benefits.
This was the first in a series of events we will be hosting on the topic of Information Security. To hear about more up-coming events, sign up to our mailing list.