Definition: A breach in an organization’s information infrastructure means that a component of the information assurance plan has been defeated. Any such event must be considered a serious security incident and be according of the provisions of the organization's information security plan. You should assume that a compromise of the company’s security plan for information assets means that the confidentiality, integrity and availability of the system has been lost. The source of an unauthorized access must be identified, if possible, for forensic purposes and steps must be taken to determine the nature of the loss. Steps should be taken to eliminate access vulnerabilities.

Its Relevance: To maintain business continuity and operations an organization must be able to assure that unauthorized use of its information has been prevented. A business must have the highest possible level of assurance that all attempts at unauthorized access are thwarted. Failing to do so might invite down stream liability law suits.

Return from "Breach" to Words [D - F]