Secondary abstract: |
Providing information security is a priority of every country, organization and individual. With properly and complete implemented safety politics deriving from existing standards, which are containing good practices, we can limit and reduce a threat to information system and protect it against inside and outside attacks. The paper describes international standards and reports which cover information security within an organization by zoning. The combination of them can cover al. segments of security. Standard ISO/IEC 27002 is one of significant documents, which is used in our surroundings, to establish security politics within organizations as it provides goals and check points for establishing security. Based on the above mentioned standard and its recommendations and goals, information system status was reviewed at NEK and a report on findings and improvements has been provided. |