Welcome to the HRS Security Awareness Training
Why is Information Security Important?Put simply, we need to take every step to protect our sensitive and
restricted UW employee data such as social security numbers and
financial account information. Being security conscious is important
because it helps us become aware of the risks around us. These risks are
often related to a choice to act or not to act. So thinking before we
act and making security-wise decisions with our data can save our
organizations from financial loss, reputations damage and even protect
from physical harm.
How can you help Security minimize risk?
We all know its virtually impossible to eliminate all risks to our systems. Even so, security experts are charged with helping to minimize these risks. Security is everyone's responsibility and protecting against these risks cannot be done without your help. Use good common sense when handling restricted data, patch your machine regularly, and keep your credentials safe. Simple tasks such as taking this security awareness course and brushing up on better security practices can make a difference.
One core principle, represented by the acronym "CIA", is worth defining to better understand the intent of Information Security:
- C - Confidentiality: Preventing the disclosure of information to unauthorized people or systems.
- I - Integrity: Maintaining and assuring the accuracy and consistency of data over its entire life-cycle.
- A - Availability: Ensuring availability of information when it's needed.
Along with these key concepts, industry has defined ten security domains:
- Access Control
- Telecommunications and Network Security
- Information Security Governance and Risk Management
- Software Development Security
- Security Architecture and Design
- Operations Security
- Business Continuity and Disaster Recovery Planning
- Legal, Regulations, Investigations and Compliance
- Physical (Environment) Security