ICAEW.com works better with JavaScript enabled.

Information security

Information security is concerned with protecting the information assets of an organisation. It aims to ensure the confidentiality, availability and integrity of information and good information security underpins the effectiveness and value of IT systems.

Become an IT faculty member

And make the most of IT

Join the faculty today
The IT faculty provides materials to help organisations understand the risks to information from new technologies and the measures they can take to manage these risks.

Simply the best

ISO 27001 provides a best-practice approach to mitigating cyber security threats faced by firms, as the vast majority of respondents to a new IT Governance survey agree. Alan Calder explains.

Essential protection

When the government’s Cyber Essentials scheme launched last year, businesses with government contracts rushed to get accreditation. Emma Philpott explains how it can benefit any UK company.

Shields of steel

The enforced security of encryption can lead to expensive and difficult consequences. Leo Waldock looks at the solutions for dealing with uncrackable drives.

The best defence

Card fraud has the potential to affect any business, from a humble retail unit to a busy accountancy practice. Omer Tariq outlines how adhering to payment card industry standards can help win the fight.

The password problem

Security experts have been telling us for years that protecting data using passwords is insecure.

Shaping a secure future

The European Commission (EC) published a proposal the Network and Information Security (NIS) Directive in early 2013.

Transparency quest

To maintain client confidence, companies sometimes keep the lid on security breaches. Leo Waldock says they should be penalised for such a cavalier attitude to our personal details.

An essential guide to security standards

Navigating the expanding landscape of information security standards can be a challenge. So if you don’t know your PCI DSS from your ISO 27001, Lesley Meall’s at-a-glance guide can help.

A cyber awakening

Smaller businesses and practices are not very interested in cyber security – or so the story goes. Kirstin Gillon reports on the outcome of the three roundtables set up by the IT Faculty to gauge the real feeling on the ground.

Register the problem

In an age where companies rely heavily on IT, risk management is more important than ever for shielding against cyber attacks. In the first part of his new column, Alan Calder explains why IT risk is no longer a single item on the risk register.

Showing 10 of 26 items