Protection and Security of a Company - Essay Example

Running Heading: Protection and security of a company Protection and security of a company Protection and security of a company As organizations are expanding their horizon they are entering into new modes of business and opting new models for achieving their ultimate goal. Resources and information are quite important to every organization and therefore security measures are maintained by every organization to keep data secrecy. Information related to sales, budgets, financial analysis, marketing research is of utmost importance to every organization and every organization tries its level best to securitize and maintain secrecy of information. Similarly information that is stored in the computer systems helps the organization in the decision making process. Securitization of information helps the organization to achieve its goals in an effective and efficient manner. If an organization fails to securitize information then it would face difficulties in both the short and the long run. Organizational efficiency suffers in scenarios where data is lost, destructed or fabricated. Hackers and malicious codes might affect the overall performance of the data and this affect the organization. Viruses are not only a threat for data security but in order to protect and secure an organization's data a solution or an effective data recovery and backup plan must be maintained by an organization. Security analysts are hired to maintain security in an organization both internally and externally. Security control procedures are essential to every organization and every organization usually devises a strategy on how to monitor and control its security issues. The element of data security involves a request message at a network node and on the intermediate level (Lehtinen & Gangemi, 2006). Then this request message is linked with the total number of data packets that are emitted from a communicating device. Organizations must develop a comprehensive set of instructions and procedures in order to assess the effectiveness of security controls that are implemented in the computer systems. Organizations should implement proper security controls within the enterprise architecture with the help of sound engineering practices to evade data losses in the cases of disasters, destruction or disruption. In order to securitize the data all the security procedures must be implemented effectively and they should fulfill all the security requirements. Security control procedures must continuously check the changes that are taking place in the information systems and should frame the security procedures accordingly. Proper planning and strategy must be developed when preparing the procedures of security within an organization. Disruption can cause serious threats to security and it might result in data loses and malfunctioning of information. Lack of retrieving valuable information or data errors can create havoc for any organization and it might result in losses to the company in the long term. Security control procedures must be designed in such a way that they must provide a proper backup to the data (Carr & Snyder, 2006). A firewall must be installed for eliminating external threats like hacking, viruses etc. Disruptions are the most dangerous threat to data security because data can be damaged and fabrications in the data can be lethal to an organization. In the scenario of destruction a proper back up plan on storage devices is the ultimate remedy of this problem. Moreover, data backup should be placed online and to secure places. Security control procedures of nearly all the organizations revolve around the idea of maintaining backups for data prior to destruction. However, conventional organizations rely heavily on data backups through physical devices but this won't stop data from destructing in the long run because a disaster like flood or an earth quake can ruin all the devices and storage capacity of the data (Bishop, 2002). Therefore, organizations must maintain backups of data on verified online sources as they are usually secure in all destructive circumstances. Moreover, organizations must consider that data is of utmost importance and it is used in the decision making process of the company therefore data must be securitized at all levels and utmost care must be given to data in the scenarios of disruption and destruction. Security in organizations is maintained at all the levels and for this reason a proper hardware and software are used to monitor and control the flow of information. Elements like firewalls and anti viruses are used at a very basic stage to securitize the data. However, on a broader scale certain other devices are used to maintain security of data in the organizations. Below given diagram explains a typical network in the organization and the process of data backup that is used by the organization. The above given diagram explains the basic network system of an organization. The security box placed after the WAN (Wide Area Network) contains the hardware and software resources that are related to the securitization of data. Data comes from the internet and enters into the firewall where it is checked whether it's securitized or not. After that data runs towards the local networks of the organization and it is usually stored in the file servers. Different antivirus and other security related software's are included in the security box of the organization which includes the firewall too. All these software's and hardware combine together to provide utmost security to organization in terms data. The data from the file servers are stored in the backup servers of the organization and these backup servers are maintained in separate locations. These backup servers provide ultimate support to the organization in terms of data lost and maintaining data secrecy. In the case of disasters a disaster recovery plan can be implemented to prevent the organization from data losses. Two (2) server solutions would be a viable approach in managing data and effectively securitizing the resources by maintain proper back up plan. An effective disaster recovery plan can be beneficial for the organization in both the short and the long term. It is quite possible that a storm might flood the entire data center and an earth quake might harm the data as well as the backups. To survive from these disastrous situations a proper strategy must be maintained by the organization in order to recover from IT-disabling disaster. Placing one server in the company and another server at a secure location might be a viable option for the company. If one server breaks down than another server provides the backup support to the organization. Similarly, both the servers should send their data to online storage facility. However, there are security concerns with an online storage facility but an online service is a better option if it's a secured source because disasters like floods, earth quakes etc can't affect online sources. As extra backups are becoming an essential factor in the corporate sector, online backup services are increasing day by day. Internet that poses several threats to businesses is treated as a redeemer in the current era (Easttom, 2005). Even small businesses can't suffer losses of financial statement, graphic design or even small illustrations they can't bear data losses that's why keeping the data safe in a viable online source is essential for their growth and progress. Thus, we can say that the core plan in terms of two servers is to place the same data on two servers in such a way that one server is located in the company and another is located in a separate area where data storage and secrecy is maintain. Furthermore, an online source is created and another backup is created on an online source. These sources are maintained just to facilitate the disaster recovery plan. If a disaster intervene the security then disaster recovery plan is there to analyze the risk, establish the budget and to create a suitable plan that would help the organization in situations of data losses. Conclusion Thus we can conclude that data management and securitization of data is an essential factor in every organization. Every company gives utmost importance to its data and they wish to protect it and build viable security to secure their data. Data security would be strengthened up when an organization installs a firewall and upgrade their anti viruses software's. Taking regular backup but on different places would be a viable option because if computer crashes and get destroyed due to any incident than information won't suffer. Software that allow proper data security for the company should be used. Training and development must be provided by the organization to individuals that are involved in managing securitization issues. Using anti spyware software and offering restricted access would be beneficial for the company and an organization can easily protect itself by this approach. Therefore protection in the end is necessary because organization's information is treated as an asset and it helps the organization in the decision making process that's why securitization of this data is very important. Backups are essential for the company and company should invest on backups and an organization must make sure that backups are maintained on physical devices and online too. References Bishop, M. (2002). Computer Security: Art and Science. Addison-Wesley Professional. Carr, h., & Snyder, C. (2006). Data Communications and Network Security. McGraw-Hill/Irwin. Dubin, J. (2008). The Little Black Book of Computer Security. 29th Street Press. Easttom, C. (2005). Computer Security Fundamentals. Prentice Hall. Lehtinen, R., & Gangemi, G. (2006). Computer Security Basics. O'Reilly Media. Read More