Corporate Watchdog

The need for information security in a business environment that is highly-networked is not at all arguable. Information, as we are aware of, is the most valuable asset in an enterprise. It needs to be consequently, protected as information leakage could become a liability.

Information exists in different forms. It can be printed on a paper, electronically stored or transmitted, and can even be viewed in films or spoken in conversations. Whatever the form it takes or the means it is shared, information should always be protected.

Information has now been exposed to a growing number of threats. To effectively manage these risks, security management system should be established.

Information Security Management System (ISMS) is a set of polices concerning on the management of an information security risk. It also pertains to the rules, processes, practices, standards, structures and responsibilities that are empowered in an organization in order to protect the availability, confidentiality and/or integrity of the business’s and the client’s information with respect to the objective of the business. It is the umbrella under which the activities of a business or business unit are defined, organized, managed and monitored.

There are guidelines being set by the International Standard Organization (ISO) in order to implement effective and robust ISMS. One of this is the ISO/IEC27001 standard. This is a standard that describes an ISMS framework for implementing the policies on information security management. This basically adheres to the management process called P-D-C-A (Plan-Do-Check-Act).

• Plan – plan to establish own organization’s ISMS.
• Do – implement and operate own ISMS.
• Check – maintenance and proper monitoring of ISMS are needed.
• Act – aim to continuously improve ISMS by providing preventive and corrective measures.

Having ISMS in an organization can be very beneficial not only to the company’s business goals but to the clients as well to whom the business is dealing with. Some of these benefits are:

• Creation of structure and mechanism for enhanced decision-making
• Working hand in hand with the information security and the Corporate Policy
• Enabling business-friendly, risk-based management
• Faster information security program management
• An aid in the creation of better strategies, standards, roles and responsibilities
• Providing a more competitive edge among others
• Enhancement of corporate governance and compliance-related activities
• Efficiency of centralized distributed environments
• A tool for better classification, and protection of information in the business.

With the advent of these technology, managers and employees should not be complacent enough and not to put the entire load to the system. It is there to serve as a guide to everyone on how to be more vigilant and proactive in terms of dealing with very sensitive and critical information that might become a risk to the company’s goals and objectives. It is the employees’ responsibility to learn and adapt to the system and be able to know the risks that are involved in the information being passed around within the company’s premises. Therefore, they should be aware of the capability and the power of the ISMS.

Today, there are a lot of ISMS tools available on the market that an organization can choose from. These tools are designed to be compliant to the de facto standards set by the ISO. These tools are either developed by companies who provide the above system such as the Integrated Security Management System, Inc. (ISMSi) and AVDAR ISMS. Alternatively, it could be custom-built by a certain company such as HP’s ISMS.

Depending on an organization’s need, they can always find a good source of ISMS tools and kits online. However, if a company wants to create their own ISMS committee then it is much better, since they can customize their system parallel to their goal. The ISO provides the guidelines and documents in creating effective ISMS. With this, any company can have their own implementation of ISMS as long as they follow the rules and the policies.

Security’s awareness is important because it is a key factor in protecting the confidentiality, integrity, and availability of a corporation’s information system. Thus, information security is everyone’s responsibility, especially those who, in a day to day basis, interact and manage information resources. Establishing an effective ISMS therefore is a must.

The Essence of Dating

Dating is the act of meeting two different people with the aim of having a personal even an intimate relationship in the end. It is a form of social activity that encourages two people to get to know each other better and make them assess each other’s suitability to become future partners. The primary purpose for dating is to learn as much about the person as possible and have fun at the same time. Dating is most common to teenagers and young adults. Dating is one of the most exciting periods of our life. This is the time of new discoveries, splendor and fun. Also, we are in the threshold of a romantic experience when we are dating.

In many cultural traditions, dating is usually arranged by a third party. He could be a friend, a family member, an acquaintance, a classmate or an officemate. He can be a professional matchmaker, too. For example, I have a friend, and he likes to meet a new friend, specifically a girl, with the intention that if they will get along well with each other, and he will learn to like and love her, she can be his girlfriend in the end. I will arrange a meeting place and time for them to see and know each other. That is dating then! However, nowadays, we already have on-line dating. We need not see each other personally to know each other. There are a lot of websites to visit to in order for us to find friends who can be our future partners in life. We can communicate and know each other better through the use of internet. There is also what we call as group dating. We go out together as a group and enjoy each other’s company. This form of dating is the safest and most fun way of dating.

The cultural tradition though, is less harmful than the on-line dating because we know the person who is introducing to us our dates. Unlike in the internet that we are truly blind with each other. At least, in the cultural tradition, we have an idea of the person’s background being introduced to us. If we choose on-line dating, we must just be careful with the person we are trying to date with. It is important for us to determine how physically and emotionally safe we are with the person we barely know. We must be sure that the person we are communicating in the internet is really the person he says he is. This is because, there are persons who are not being honest with their identity in the internet. They sometimes change their names, their age and most especially their faces. So before you get to meet the person you are trying to befriend in the internet, you must make sure that he is someone who can really be trusted. Most of all, you should not be easily in love with the person you are talking within the internet. You got to know him first and meet him personally. There’s nothing better that seeing and staying with the person to know him well.