What is Information Security?

Information Security (sometimes referred to as InfoSec) is the practice of protecting information by mitigating the risks that surround it.

Here we take a deeper look at InfoSec and what measures are needed to achieve it.

types of information security

need of information security

information security principles

information security tutorial

components of information security

How is information security achieved


What is information security risk

What is information security management

What is information security governance

what is information security policy (with link to infosec page)

Confidentiality, Integrity, and Availability

Confidentiality, integrity, and availability (CIA) is a practice that is designed to help you create information security policies.


The definition of confidentiality is to protect information and ensure that it is not seen by any unauthorised persons. In relation to information security, we would consider such information to include things like bank details, trade secrets, personal phone numbers.


Integrity relates to ensuring that any information cannot be modified by unauthorised persons. This could include a financial transfer being intercepted and redirected to another bank account.


If a website is struck by a denial of service attack (DDoS) visitors are prevented from accessing any information on it. If the website is an e-commerce site or an online banking site, this could cost both consumer and owner a great deal of money.

Find out more about our Information Security Management System

ISMS Online Rating: 5 out of 5
Share This