In today´s fast-paced, rapidly changing business environment, information may well be the most critical asset of any organization. Business processes and decision-making depend on accurate information with guaranteed integrity and availability.

But those information assets are constantly at risk from threats which abound in the form of hackers, viruses, and human error. If a threat finds a vulnerability, the risk will be realized, and the resulting security failure is likely to have a severe impact on the organization in terms of continuity, credibility, legal liability, and government compliance.

Dante begins a Security Planning and Implementation engagement by performing a full risk assessment, which provides a baseline for the design and implementation of security policies and plans, both proactive and reactive. The security planning process applies these principles:

• Trustworthy Computing. Providing the appropriate level of security to satisfy the business needs.
• Business Consistency. Ensuring that security is applied throughout all business applications to prevent weak links in the chains.
• Layered Defense Strategy. Building security not just at the perimeter of the systems but throughout the layers of the network, operating systems, and applications.
• Protection/Performance Balance. Considering the point at which the security measures become detrimental to the usability of the systems.

The plans are then implemented by Dante in the form of business and technical processes, with appropriate security administration to ensure the continued confidentiality, integrity, and availability of the information assets so essential to the success of the enterprise.