Araknos
Mission

Why
Every organization, either public or private, commercial or productive, has two main goals:

  • Observance of lows and regulations for
    • - privacy (D.Lgs. 196/2003)
    • - minimum safety measures (DPR 318/1999 e L. 325/2000)
    • - computer fraud (art. 24 L. 231/2001 e art. 640ter c.p.)
    • - System abuse
    • - software license management
  • Core-business performance (service supply, product manufacture and/or sale etc.)
    • - protect personal data (of customers, personnel, suppliers and citizens)
    • - protect company business and third parties information
    • - ensure managerial and productive systems proper functioning
    • - protect company systems against abuse

To achieve those objectives with implementation of ICT, a security infrastructure is essential to meet the following major requirements:

  • Information confidentiality

  • Data and systems integrity
  • Data and systems availability

Thus Information Systems Security is not a surplus nor an option, but is fundamentall to the performance of any activity.

 

How
Security is not a product nor a system, but a process requiring continuous improvement and verification in order to be efficient (in terms of resources utilization) end effective (in terms of actual control).
Installation and update of products (such as Firewalls, Antiviruses, Intrusion Detection Systems etc.) is not enough to keep your Information System "secure". The problem should be viewed as a corporate need concerning all Company divisions and departments.
The Company should define a range of organizational, methodological and technical procedures enabling it to face the problem in a systematic and thorough manner. This can be achieved by creating a Security Plan reflecting the Company policy for security.
Akab Architecture developed by Araknos in compliance with all quality standards and certified to ISO-9001:2008 standard services all this process.

 

How much
There is a point of maximum efficiency for the amount of resources used to make Information Systems secure.
In fact, costs paid to guarantee security should be commensurate with the alleged or real value of the systems to be protected. For this reason, company assets should be carefully analyzed to obtain greatest result (risk break-down) with least effort.
Such analysis involves many quantitative and qualitative aspects of diverse systems and requires a wide experience.

 

When
Now!
Any delay in the analysis and implementation of security-related procedures, exposes the whole Company activity to a great risk.