Information Security Policy

Page 1

Storm Technologies Limited

Policy Title:

Information Security Policy

Policy No:

010

Version:

1.03

Effective Date:

06 December 2017

Reviewed:

January 2020

Owner:

Services & Solutions Director

Introduction Information Security is a key component of the company IT Services Ltd.’s overall business management framework and provides the basis and directives for detailed information security documentation including system level security policies, security guidance and protocols or procedures.

I. A.

Policy Objectives, Aim and Scope Objectives

The objectives of this Information Security Policies document are to help preserve the confidentiality, integrity and availability of the company’s business information, based on a business risk assessment, impact analysis and an understanding of our tolerance for risk. B.

Aim

The aim of this policy is to set out the rules governing the secure management of the company’s information assets by ensuring that all members of staff are aware of and fully comply with the relevant legislation as described in this and other policies; ensuring an approach to security in which all members of staff fully understand their own responsibilities, creating and maintaining within the organisation a level of awareness of the need for information security as an integral part of the day to day business and protecting information assets under the control of the organisation. C.

Scope

These policies apply to all information, information systems, networks, applications, locations and users of the company systems or supplied under contract to it.

January 2020 ST010v3


Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.
Information Security Policy by Storm Technologies - Issuu