Moreover, information security policy can be defined by two terms; • Security Goals: Wolftech is willing to protect the confidentiality, integrity and availability of all physical/hardware, software, information, infrastructure and tangible assets of the company to make sure that regulatory, operational and contractual requirements are fulfilled. The overall goal at Wolftech could be described as follows, Ensure the protection of personal data. Set requirements for confidentiality, integrity and availability for Wolftech employees and other stakeholders. Make sure that it compliance with current laws and regulations of the company such as disposal regulation, recycling regulations etc. Ensure that external service …show more content…
To make sure that the company network infrastructure availability and reliability of the products or services supplied or operated by the company. Motivating the administrators and staff of wolftech to take the responsibility for the ownership of and knowledge regarding information security in order to reduce the risk of security incidents that are been cause due to security system failures. • Security Strategy: Wolftech current business strategy for risk management are the guidelines for identifying, assessing, evaluating and controlling the information related risks by way of establishing and maintaining the information security policy. Further the security policy will be reviewed and updated annually or when necessary according to the principles described in ISO 27001 standards after this security policy is successfully implemented in Wolftech. Also a major change in company’s business approaches and other external business dealings related to the threat level, should result in a revision security policy and guidelines relevant to the information …show more content…
• Information Assets: Information and details in electronic media such as databases, files in PDF, word, excel and information such as user manuals and training manuals. Moreover, conversation made with some industry people also falls under information assets. • Infrastructure Assets: Infrastructure facilities such as offices, electricity and air conditioning. Because these facilities also will interrupt in the availability of information. • Human Assets: People also considered to be an asset of the company, since they also have lot of knowledge and information with the experience they possess. People at Wolftech could be fall under two categories; Employees: Staff and managers who possess major roles at Wolftech such as senior, executive, system managers, software architect, software testers, software developers, security administrators etc. Non-Employees: external consultants’/system developers, specialist contractors and other stakeholders of Wolftech. • Intangible Assets: Information documentation related to the intellectual property of Wolftech, reputation, brand