Information Security, also known as InfoSec or IS is a security discipline that ensures the protection, confidentiality, availability, and integrity of computer data. IS prevents the unauthorized use of data, specifically in regard to access, use, sharing, transmission, disclosure, disruption, modification, inspection, recording, or destruction.
Terms related to Information Security: Identity and Access Management (IAM), multifactor authentication, two-factor authentication, biometrics, data security, penetration testing, vulnerability scanning, cybersecurity, integrity
InfoSec is primarily concerned with the data confidentiality, integrity, and availability — known as the CIA triad. It needs to achieve this while ensuring all security policies are followed, and that information security does not negatively impact on business processes and operations. The CIA triad includes:
InfoSec controls include Identity and Access Management, Access Controls, Multifactor Authentication, Biometrics, and related technologies.