Академический Документы
Профессиональный Документы
Культура Документы
Objective
What is ISO 27001?
Information Security
Data Classification
Physical Security
Data Security
Incident Reporting
Controls-based policy
A comprehensive set of controls comprising best
practices in information security.
An Information standard
Encompasses all types of information
Certifiable
Internationally recognized
Risk-management based
Information is an asset to all individuals and businesses. Information Security refers to the protection of these
assets in order to achieve:
i) Confidential ii) Integrity iii) Availability
Information Security
Confidentiality Availability
Protecting sensitive Ensuring that information
information from and vital services are
unauthorized disclosure Integrity available to users when
or interception. required.
Safeguarding the
accuracy and
completeness of
information
Secret Contains highly sensitive, strategic Firstsource information that is material, non-public.
Highly Confidential Contains personal data regarding Firstsource personnel or sensitive information about project/client data.
Confidential Contains Firstsource, client and some personal data which is marked confidential, known to be
confidential or is not generally available to the public.
Do’s
Pick up confidential and proprietary items quickly off the printer
Lock confidential and proprietary documents and computer media in drawers or filing cabinets
Any documents marked ‘Secret/Highly Confidential/Confidential’ should not be left on the desk unattended
Log out of Windows or invoke the password protected screen-saver by pressing Ctrl-Alt-Del on the Keyboard, and selecting Lock Workstation
prior to leaving the computer
Exchange information with other Firstsource entities or third party organizations through approved courier agencies.
Verify your recipient’s identity before discussing confidential information over the phone.
Don’ts
Pin-up any confidential information or client data in the workspace
Write or make notes on any piece of paper, which you might loose
Ensure all confidential, high confidential documents are shredded immediately after use.
Any loose paper left unattended on desk will be shredded without any warning.
User should ensure they have unique and identifiable ID and passwords for all applications they might use for their official work
Should promptly follow the password policies of Firstsource and where applicable those of client
In case of Login trouble to any application, user should always contact Helpdesk. Should not share other’s ID / Passwords
User is accountable to all activities done on Firstsource systems using his / her ID’s
Avoid discussing sensitive and confidential information in open workspaces and public places like: Airports, Restrooms, Restaurants,
Elevators.
Turn off the Microsoft Outlook preview pane before deleting spam messages.
Do not request removal from the spammer's distribution list, even if this option is offered.
Be judicious of the websites you access and never browse a site that contains inappropriate material.