Posts Tagged "ISO 27001"

Data Security versus System Security- Do you know the difference?

Posted on Jan 13, 2022

Data Security versus System Security- Do you know the difference?

If you don’t have appropriate security systems in place, just a single employee can unwittingly undermine your best efforts in cybersecurity.

A comprehensive security system is vital to derail a potential attack vector, the path of a cyberattack. Good security control starts with understanding data security versus system security and how both help address security threats.

What Is Data Security?

Cybersecurity involves data protection, such as data privacy, integrity, and access control, according to the International Organization for Standardization (ISO).

Examples of Data Security

The international standard for information security, ISO 27001, lists fourteen domains to consider in the protection of sensitive information, such as financial data, intellectual property, or employee details. Some examples of data security include the following:

  • Two-factor authentication
  • Strong passwords
  • Data encryption
  • Biometric verification, such as fingerprint authentication

Core Elements of Data Security

You can think about data protection using the CIA triad. The letter C stands for confidentiality, meaning only authorized people can access sensitive data. The I stands for integrity, data consistency and accuracy. The A, for availability, refers to how easily authorized parties can access confidential data.

What Is System Security?

A system security plan includes network security with an eye toward cloud computing.

Common Types of System Security

A common device of system security is a firewall, which monitors network access and should thwart a potential network attack.

On a more complex level, public key encryption encodes two distinct digital keys that work together to prevent unauthorized access to information. Network users must have both keys to access information. 

Read More »