What is Information?

Information is organized or classified data, which has some

meaningful values for the receiver. Information is the
processed data on which decisions and actions are based.
For the decision to be meaningful, the processed data must
qualify for the following characteristics −
Timely − Information should be available when required.
Accuracy − Information should be accurate.
Completeness − Information should be complete.
Depending on the sensitivity of the data an organization holds, there needs to
be different levels of classification, which determines a number of things,
including who has access to that data and how long the data needs to be
retained. Typically, there are four classifications for data: public, internal-
only, confidential, and restricted. Let’s look at examples for each of those.
Public data: This type of data is freely accessible to the public (i.e. all
employees/company personnel). It can be freely used, reused, and redistributed
without repercussions. An example might be first and last names, job
descriptions, or press releases.
Internal-only data: This type of data is strictly accessible to internal company
personnel or internal employees who are granted access. This might include
internal-only memos or other communications, business plans, etc.
Confidential data: Access to confidential data requires specific authorization
and/or clearance.
Restricted data: Restricted data includes data that, if compromised or accessed
without authorization, which could lead to criminal charges and massive legal
fines or cause irreparable damage to the company. Examples of restricted data
might include proprietary information or research and data protected by state
and federal regulations.
 There are five levels of classification used by the government and
military,
Top Secret: Disclosure of top secret data would cause grave damage
to national security. Top secret data is given the highest levels of
protection and access is restricted to persons with a “need to know.”
Secret: Disclosure of secret data would cause serious damage to
national security. While this data is considered less sensitive than data
classified as top secret, it is nonetheless given a high level of
protection with many safeguards and procedures that must be
followed.
Confidential: Confidential is the lowest level of government classified
data. Its release would cause some harm to national security.
Sensitive But Unclassified (SBU): The SBU designation is used for data
that is not classified, but there are reasons to protect the information
from release.
Unclassified: Unclassified is data that has no classification or is not
sensitive.
Need of Security:
Information security is not only related to a computer system but it
should apply to all aspects of safeguarding or protecting
information or data in any form or media.
It is important to protect the system or network from unauthorized
access or modifications.
For any organization information security performs following
functions:

1. Protects the organization’s ability to function

2. Enables safe operations of applications
3. Protects the data collected and used by organization
4. Safeguard the technological assets of an organization.