ISO 17799 is an internationally recognized Information Security Management guidance standard, to defines information as an asset that may exist in many forms and has value to an organization.

 

The goal of information security is to suitably protect this asset in order to ensure business continuity, minimize business damage, and maximize return on investments.

 

As defined by ISO 17799, information security is characterized as the preservation of: -

 

• Confidentiality - ensuring that information is accessible only to those authorized to have access

• Integrity - safeguarding the accuracy and completeness of information and processing methods

• Availability - ensuring that authorized users have access to information and associated assets when required