INFORMATION SECURITY SERVICE
Information security is about ensuring the confidentiality, integrity and availability of your information assets.
You must be able to identify and locate those assets and put in place suitable measures to protect them from external or internal threats. Cyber security forms part of this strategy. However, deploying tools to protect from cyber threats will not mitigate the risks to information assets that are located away from this protection. Information stored on personal devices for convenience creates vulnerabilities for example. Users are also integral to security, they need to understand the risks and recognise the threats. This then represents a holistic approach to security.