IT security is a discipline that provides security technologies for IT systems and networks to complement information security that is supported by enterprise culture. Recent world events, such as the Sept. 11 terrorist attacks, as well as security audit results, show that IT systems and network security levels often are inadequate in far too many enterprises — and that too often, business units have not taken responsibility for securing their enterprises' IT assets.
Our electronic world is based on dynamic relationships and collaboration. An enterprise's information security vulnerabilities can have upstream and downstream effects, creating problems for customers, suppliers and government agency partners. How can enterprises share business transactions when the underlying IT infrastructures don't always offer acceptable security levels in terms of availability, access control, nonrepudiation, privacy and integrity?
