Currently the demand for information grows by leaps; we have access to everything we need by the means of search engines, as well as access to information from organizations that are whether available on the Web or not; however the information is stored in virtual environments.
IT as well as information security within organizations are growing substantially, and the highly complex subject demands competence professional to control such a dynamic environment .
Ensure the information is not just master the technical part to safeguard the information of an organization, customers, suppliers and others relevant to a business. Information Security is also awareness. Employees need to be aware of the importance of information that flows within the company, be it verbal, written, electronic or otherwise.
Brazil, when it comes to this awareness and concern for rapid development on the subject, still has much to do. We have some initiatives from the Federal Government, as the GSI Instruction No. 01 13.06.2008, which regulates the Management of Information Security in the Federal Sphere; a Law Project to ensure the protection of personal data; the Ordinance of Denatran 1334/2010, which dictates that for it to function as a Central Management Unit (UGCs) it must have certification ISO 27001- System Management Information Security; and the Resolution 3658 of the National Land Transport - ANTT (Ministry of Transport) as to the electronic payment of freight - citing Management System Information Security.
About the protection of personal data, despite the constitutional provision, Brazil does not have anything specific on the subject, differentiating themselves from various countries that regulated the right of the citizen, such as the United States, Japan, Argentina, Chile, Uruguay, among others.
ISO 27001 provides the controls in its context, on protecting the privacy of personal information, intellectual property rights, physical and logical access controls,business continuity,to name a few.
Currently, Brazil has less than 30 companies certified in ISO27001.
Inscription à :
Publier les commentaires (Atom)
Aucun commentaire:
Enregistrer un commentaire