56. What is Cyber Security and why are information security policies so important, and do you offer comprehensive I.T. security documentation?

When seeking a technical definition or understanding on a topic relating to information security, individuals often turn to the likes of NIST and Wikipedia. Such is the case for cyber security, for which NIST briefly describes as “The ability to protect or defend the use of cyberspace from cyber attacks (NIST glossary). As for Wikipedia, they blend cyber security into the broader subject of information technology and information security, failing to provide – understandably so – a clear definition. We all tend to get caught up on technicalities, so for purposes of simplicity, yet here’s a well-crafted definition of what cyber security can best be looked upon as:

The various measures - such as the enforcement of policies, and the enactment of necessary processes and related procedures - for helping ensure the confidentiality, integrity, and availability (CIA) of information systems from malicious attempts in compromising system security that can ultimately disrupt, disable, destroy, and harm an organization’s system resources.

Simply stated, it’s about putting in place measures for protecting one’s information systems from the ever-growing threats in today’s cyber world we all live in, and there’s a tremendous effort currently underway by organizations all around the world to do just that. Publicly traded companies, local, state, and federal agencies – and many other entities – are hard at work putting in place measures for ensuring the safety and security of their entire information systems landscape. From Defense in Depth, to layered security, along with the adoption and implementation of a dizzying array of security standards, the topic of cyber security is alive and well.

Security Policies | Essential for Cyber Security Initiatives

It’s important to note that one the most vital aspects of any organization’s cyber security initiatives is having documented operational and information security policies and procedures in place – essential security literature that defines critical practices for one’s technology landscape. All of the major cyber security compliance requirements and accompanying benchmarks, standards, and frameworks require it, and it also just makes sense from an information security best practices perspective.  FLANK, a global leader in information security policy research and development, offers the FLANK21 set of documents containing literally hundreds of essential cyber security policies, procedures, forms, checklists, templates, provisioning and hardening documents – and more.

Download Information Security Policy Documents

Cyber security is a serious and growing issue, one that requires a commitment by all of us in the information security arena. Putting in place professionally developed, well-written information security policies and procedures is an excellent place to start.