IS 14356 : 1996 Guide for protection of information resources

1 Scope

This guide is intended to be used as guide for policy makers,managers and employees of an organization who are responsible forinitiating, implementing and maintaining protection of computersystems and date processed within their organisation. It is aimedat providing help for developing a structured and defined processfor protection of information resources and implementing that. Itis also meant to serve as a guide for identifying the range ofcontrol required for most situation encountered in the context ofinformation system. This guide is also beneficial in such caseswhere information flows through network as it provides a frameworkfor enabling a mechanism for establishing mutual trust betweenorganizations which are networked partners, and a basis forfacilities management between information users and serviceproviders.