IT induction and information security
IT induction refers to an educational programme or activity that informs staff within an organisation about the IT facilities and services available to them, bringing their attention to current IT policies and guidelines, whilst emphasising individual responsibilities through good working practices.
Information Security = Safeguarding Information
Information security is fundamentally about safeguarding information and information systems from unauthorised access, use and disclosure, and is based on three principles:
Confidentiality: only those authorised to do so can access the information
Integrity: information must be accurate, up-to-date and trusted
Availability: information must be available to those who need it, when they need it.
Awareness: increase efficiency and safeguard assets
Everyone needs a minimum amount of awareness and training to gain the skills and knowledge needed to use systems and technology safely, securely and efficiently. Therefore, IT induction and information security awareness training programmes are essential for any organisation.
IT Governance Publishing, IT Governance's niche IT-GRC publishing imprint, has produced a number of titles surrounding the increasingly important issue of IT induction and information security. You can find out more on each by choosing one of the following:
IT Governance offers ISO27001 training resources. Email firstname.lastname@example.org if you would like to discuss internal training courses that can help your organisation with its IT induction and information security awareness programme.