What are the three aspects of security?

From ScenarioThinking
Jump to navigation Jump to search

What are the three aspects of security?

Security is based on 3 aspects: people, systems and procedures. They all need to be ordered and in place to become secure. It’s often said that the weakest link in any security are the people. Attackers could use social engineering tactics to intrude an organization. Also employees who have knowledge about a system can use this knowledge against an organization. For example a system engineer of a bank who knows all the passwords could inflict serious damage to the system. In order to handle these critical situations procedures should be in place to guide people on which actions to take. People make worse decisions under stress so procedures should guide them. The systems provide the first line of security like firewalls, proxies and intrusion detection software.