Internal issues relevant to the above for its ISMS. Staff can often move from our company to a competitor quickly. If used out of the office care should be taken using insecure public networks. As a business, apetito handles a range of Personal Data relating to its customers, staff and. Collection of printed paper waste 2.

Operational Risk Publication Date: For your security, if you’re on a public computer and have finished using your Red Hat services, please be sure to log out. Valuable only because of the information they contain. The organisation will strive to improve its confidentiality processes in respect to client data. Information Security Incident Management Policy.

Ensure security guard undergoes a personality test and recruit a new internal auditor.

ldcc case study

This could affect confidentiality. They are a vital asset that support ongoing operations More information.

You should talk to a lawyer and an IT specialist for a complete More information. We will only collect information that More information. Evaluating Information Security Risks Based on the Risk Acceptance Criteria detailed above we have identified a score of over 40 as being the threshold for risk treatment half of Law enforcement If a breach broke the law we could be fined, face restrictions or directors face imprisonment.

Lake Dale Contact Centre Case Study – PDF

Manage budgets and other documentation 4. As roles change, the definition of these roles must be clear and available.

ldcc case study

Historically we have had high turnover in staff and this means staff could take data with them on departure. Document distributed to users by document controller Procedures register updated Signed: Governance, organization and roles and responsibilities Procedures for handling assets shall be developed and implemented in accordance with the information classification scheme adopted by the organization.


Register Not registered yet? Hanson On April This document and other Information Services documents are held online on our website: Top Management have decided not to seek certification to ISO nor to adopt all of its requirements, but are happy to commit to adopting the controls in Kdcc best practice.

LDCC prepares for future with Red Hat OpenStack Platform

Paper is easily seen and stolen. No A13 Staff – Admin 1. Procedures for working in secure areas shall be designed and applied. Wages in our industry are low and so bribery is an ever present threat, this could affect confidentiality.

Lake Dale Contact Centre Case Study

This should all be rectified now with the new access control procedure. Backup copies of information, software and system images shall be taken and tested regularly in accordance with an agreed backup policy.

Appropriate procedures shall be implemented to ensure compliance with legislative, regulatory and contractual requirements related to intellectual property rights and use of proprietary software products.

In the past we have had malware infections that has damaged our data. A10 Phones – Desk 1. Data and Information Security Policy St. Audience Owner Contacts This policy applies to ldvc third parties and staff, including contractors. No A15 Staff – Management 1. User management Certification Central.


Build develop and document Acceptance Transition to production installation Operations and maintenance support postinstallation It is a well-known fact in computer security that security problems are very often ldcc direct result of software bugs. As we grow this lack of documentation may cause problems. LDCC recognize there are legal and regulatory requirements over and above the requirements as established by our internal requirements.

As Data Cleansing is a current outsourced process, this naturally causes our clients concerns around Confidentiality and Integrity. Suppliers Even a supplier may be affected by an incident, if our use of their systems results in negative publicity for the tsudy they may not want to supply us.

Your Red Hat account gives you access to your member profile and preferences, and the following services based on your customer status:. The risk assessment gives us levels of acceptable risk. If we lost key skills such as how to encrypt or unencrypt files we would loose the information.