Information security

In recent months, there have been many high profile examples of both passive breakdowns in information security systems and the active hacking of information. Protection of information is key to any business. The following are some of the questions that you should ask when assessing your current policies and procedures in this area:

How do you keep informed of your regulatory responsibilities in all the jurisdictions in which you operate?
What information technology controls are in place to limit access to confidential or market-sensitive information?
How do you stress-test your systems and who monitors how or if controls are being bypassed?
Do you have a policy on encryption and transfer of data?
Do you control and monitor Internet and e-mail usage?
Does your policy take into account local privacy and employment laws?
Do you vet temporary staff and third-party suppliers and are they made aware of information security requirements?
Do you have procedures in place to combat identity fraud?
Have you considered the reputational risk of a data breach?

Disclaimer: The information on this website is provided for informational purposes only. The information is not legal advice, which would depend upon the particular facts of your situation.

Rapid Response

Site navigation

Home

Register

Experience

Case studies

Our approach

Brochure download

Team

Film

Counting the Cost film

In at the Deep End film

Hints & tips

Overview

Document management

Crisis management

Information security

Internal investigations

Whistleblowing

When in crisis

Overview

Confidentiality

Dawn raid

Fatality at work

Industrial dispute

Loss of personal data

Media relations

Product recall

Whistleblowing

News

Hints and Tips

Hotline

Information security

Hints and Tips