Issues
Now we are well and truly into the 'information age', there is a growing realisation of the importance of information and the need to manage it properly. Information issues are now high on the compliance and risk management agenda.
Information security is all about securing an organisation's information-related assets - software, hardware, databases etc. to ensure their continued availability to authorised users, and to deny access to those unauthorised. To date, ISO 17799 has been the most widely recognised information security standard. It describes components of an ISMS (Information Security Management System), including; policy, access control, physical and environmental security, continuity planning, and asset classification / control.
It is generally recognised that information is most likely to be secure if there is a formal system in place - with defined roles, responsibilities, policies and procedures. Released in late 2005, ISO 27001 defines the requirements for a certifiable ISMS in much the same way as ISO 9001 does for a QMS (quality), and ISO 14001 does for an EMS (environment).
Almost the reverse side of the coin is Freedom of information - which generally requires organisations to respond to requests for information, and communicate that information when appropriate to do so. In many countries, the 'right to know' is enshrined in law, and applicable organisations simply must comply with it. For example, in the UK there is the Freedom of Information Act 2000. A recent article in Community Care magazine suggests that 100,000 UK organizations need to comply with this act.
Managing information requires effective systems in place to:
- Communicate policies and procedures
- Log requests or exceptions
- Assess risks
- Plan, record and track actions
- Audit performance / conformance
- ...and so on
Solutions 
Qudos System 3 is a powerful software application that can help you manage information issues better and put a coherent framework in place:
Qudos System 3 provides a modular, yet integrated solution. Relevant modules include:
- Documents
Helping you to effectively and efficiently distribute and control important documents such as policies and procedures - HR
Schedule and maintain records of employee training - Audits
Schedule and record security, desktop, or compliance audits - Risk
Assess security threats and the risks they pose - Actions
Plan / monitor control measures, log actual or potential problems or exceptions to established business rules, plan preventive / corrective actions, and then assign, record and track those actions
It is a genuine enterprise solution with an unrivalled combination of functionality and technology. Its robust SQL server database, and browser interface enable off-site and multi-site access over intranet or Internet. One of its great benefits is the opportunity to achieve efficient and effective management of Information Security in addition to other compliance issues such as Environment, OHS, and Quality in one integrated application. More about Qudos System 3...
Why not ask us for an online evaluation.