Up One Level


Business Requirements

 

The needs of the business processes which must be addressed by either a manual or computerised system. It is critical that the business requirements be clearly defined and documented, otherwise other issues may take its place, such as the recommendations of the IT group or supplier, which has a valid, but separate agenda. In many cases, business owners and managers find it seemingly complex to document their needs beyond high level requirements.

However, by recalling the tenets of Information Security, the high level requirements may be refined further by specifying the needs of the system with respect to, Confidentiality - who is able to see / amend what, Integrity - a system that is proven, tested and has security and fall back routines in case of need; and Availability - the system must be available (say) to users in multiple offices both on workstations and on their laptops.

The Business Requirements is a statement about what matters and the priority of those issues. Time spent in agreeing these is never time wasted.


*** The Information Security Glossary ***
Previous PageTop of this pageNext Page



Buy Now:

 

This Glossary forms part of the RUsecure Security Policy Suite... visit RUsecure Security Policy World
Use of the guidance contained within RUsecure™ is subject to the End User Licence Agreement
This site created with EasyHTMLHelp(tm) for MS Word
 Risk Associates: Resources for Security Risk Analysis, ISO 17799 / BS7799, Security Policies and Security Audit