Principles to avoid mistakes
Information Security - Structuration and implementation
Article REF: H5120 V2
Principles to avoid mistakes
Information Security - Structuration and implementation

Author : Nicolas DUFOUR

Publication date: July 10, 2025 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

1. Principles to avoid mistakes

One of the key organizational principles for information systems security is to have a dedicated ICT (information and communication technologies) risk management framework, a dedicated audit and testing plan, and a specific training and awareness program. This also takes into account the need to monitor risks via a dedicated dashboard. Figure 1 illustrates these principles, which concern the implementation of a global governance framework for the management of risks linked to information and communication technologies (ICT), the implementation of a dashboard enabling regular monitoring of these risks, the implementation and monitoring of information system security audit tests, and the monitoring of employee training in information security issues.

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

Article included in this offer

"Security of information systems"

( 86 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact us
Contact our team FAQ