IT AND ENVIRONMENTAL SECURITY
IT and environmental security involves technical, organisational, legal and human elements. To assess security, it is generally necessary to identify the threats, vulnerabilities and risks associated with IT assets, in order to protect them from possible attacks (internal or external) that could cause direct or indirect damage to an organisation, with an impact superior to an established tolerability threshold (economic, political-social, reputational, etc.). In addition to the three pillars that make up the CIA triad (confidentiality, integrity and availability), the following can also be considered: authenticity, nonrepudiation, accountability and reliability.
Since information is a company asset, and most information is today held on IT storage devices, all organisations have an interest in guaranteeing the security of their data, in a context in which IT risks caused by breaches of security systems are continually on the rise.
Implemented alongside IT security measures are others aimed at guaranteeing environmental security, such as the sweeping of areas such as offices, communal areas and electronic devices to verify whether any recording and/or jamming devices are present.