So the Indian government issued a confidential document to it’s employees on how to keep things secure and secret. It sounds like a great idea and something you should be doing in your organisation – Octagon Technology has such a document.
Our document is version controlled, and I, as CISO, have complete editing control over it. When stored in our SharePoint, authorisation for access is controlled and monitored. Just to make sure the document is password protected, so if one of our team makes a mistake and sends it outside the organisation, we have the last straw protection of a password. Why, because this document lays out how our team will protect ours and our client’s secrets and private information – and contains information that may compromise those cyber security steps.
I will not be sharing this document with you – however the Indian Government’s version is available online! Someone did not read the thing before just sharing it!
Indian government’s confidential infosec guidance leaks • The Register
Would you like help to create such a document for your organisation? Would you like us to show you how to keep this, and other information in your organisation protected and secure? Do you understand “AAA” – access, authentication and accountability, which should be underpinning all your information technology?
Clive Catton MSc (Cyber Security) – by-line and other articles
