English
English
Kanoana Close

Babaire ao Iango ibukin Tararuan ao Kamanoan Bitineti

IT, n ikotaki ma te online security, e rang kakawaki ibukin kambwana n aekaia nako. Onean mwin aikai n ikotaki ma kamangaoan te bitineti, mamaran kawakinan ke irakin nanon te tua, e rotaki te karekemwane, e rotaki tein ma aroaron te bitineti. Ai ngaia are ko riai ni karaoa te systematic approach ibukin te security ao te moan tabo ae kona waaki ma iai bon botan ao karaoan ana security plan te bitineti. 

Korean ao wakinan te babaire iaon kamanoan bitineti (security plan) tiaki te mwakuri ae kakamaku karaoana.  Te plan ae tamaroa n te bong aio e na tamaroa riki nakon te plan ningabong, ao e kona n tainako ni kabouaki ao ni katamaroaki riki rimwi.

Butin te babaire ao iango

Iai nimaua te kawai ibukin te security plan ae tamaroa:

  • Te tutuo (Audit)

Kamatebwaia oin am konabwai ao am atatai. Noria ngkana ko kainanoa te ibuobuoki mai tinaniku. Nori bwa tera am bwai aika a nang kakawaki (assets) ao rongorongo aika a riai ni kamanoaki, ni ikotaki ma te hardware (rabwatan am kaombiuta ma bwaina nako), software (kanoan rabwatan am kaombiuta), rongorongo ke riboti aika a koreaki (documentation) ao te data. Kamatebwaia taian waaki ni kakamaku ke taian kanganga. Karinani bwaai aika a nang kakawaki bwa ana kamanoaki.

 

  • Babaire ao Iango (Plan)

Korei kawai ibukin totokoan, atakin ao mwakurian security threats. Karaoa te kainibaire ibukin kamatoan riki aron iran taian babaire, ni ikotaki ma kainibaire ibukia taan mwakuri.

Rinea bwa antai ae ena tabena katean ao tararuan te plan aio. Boraoi iaon te tai ae e na waki iai te plan.

  • Wakinna (Execute)

 Mamaroro ma taan mwakuri. Kataneiai ngkana e kainanoaki. Wakina te plan aio.

  • Tararua (Monitor)

Karaoa te kakae i aon taian threats ngkana ko atai. Karin (subscribe) nakon taian rongorongo ma kaongora iaon te tararua. Kaboua ao bibita te plan ngkana iai bitaki aika riki i bon iroum, n te hardware ke software. Kakaraoi kateimatoan raoiroin bwaai (maintenance) ae reitinako n aekan taian backups ke kabouan rongorogon te virus.

  • Kaokiokia (Repeat)

Iangoa karaoan te tutuo ae tabwananin ao maroroakina mwina (update) onoua nakon tebwi ma uoua te namakaina imwin are e tia te moan plan ke ngkana am bitineti e a rinanon taian bitaki aika kakawaki.

Tera ae na karinaki

Te security plan ae omwaka e na iri inanona iango aikai. Ibukin bitineti aika a uarereke, iai tabeua maiai aika aki nang kaineti ke  n tau:

  • Te manatia i tinanikun te kambwana e a kaboa te kambwana bwa ana bwai (management buy-in) ao tauan te nano n te mwakuri.
  • Rabwata ma i tinaniku (taan bobwai, taan kabonakoi bwaai, raom ni bitineti, aomata ke rabwata aika iai nanoia n te bitineti ma ana waaki (stakeholders).
  • Karaoi kainibaire iaon kamanoan rongorongo
  • Tabem ibukin rabwatan te rongorongo (information assets)
  • Kakaokoroan rongorongo (rongorongo inanona – internal), public domain, ao aika ana riai n raba n aki ataki).
  • Tuoaia taan mwakuri aika boou.
  • Taian boraraoi aika aki kaotaki.
  • Te atatai (awareness) ao te kataneiai
  • Kamanoan taabo ao babairean te rinnako
  • Tararua te IT equipment
  • Kawain ao tabem ibukin kabutan te waaki (operational procedures)
  • IT systems aika boou ao a tia ni kabouaki (upgrades)
  • Totokoa rokon te malware (te program ae e kona n rinnako n am kaombiuta n akea te kariaia ao ni karaoa te urubwai)
  • Taian katoto (back-ups)
  • Aia device taan mwakuri
  • Karaian rongorongo imarenaia aomata ke kambwana (ni ikotaki ma aomata ae a rekereke ma rongorongo ma tiaki ngaia aika karai rongorongo (third parties).
  • Karokoan bwaai ni bitineti irouia taan bobwai rinanon te wireless network (electronic ao mobile commerce)
  • Tararuan ao ribotinan waaki online are e karaoia te tia online
  • Taben te user (ni ikotaki ma kabaeam ibukin te mwakuri – employment contract).
  • Te mwakuri ae karaoaki i tinanikun te aobiti ao n taabo aika kiraroa
  • Babairean tararuan te network
  • Te network ae e coded bwa e na kanganga atakina (network encryption)
  • Te processing ae eti n taian application ni kateimatoa etin taian data are a kawakinaki
  • Te tararua i nanon te rikirake ao te ibuobuoki
  • Vulnerability management bon te taneiai ae karaoaki ibukin atakin, karinanin, moanibwaiakin ao katotongan te software ae kakai reke n te waaki ni babakanikawai.
  • Ribotinan kanganga ao mamara
  • Tararuan ao babaire ibukin taian kabuanibwai (incident) ao uotakirakeaia (escalation).
  • Aron ana tararua te IT ibukin babairean ao kabutan te bitineti
  • Iran te tua (ni ikotaki ma te Data Protection Act)
  • Iran aron te rabwata are e karaoi taian payment card
  • Iran nanon bwai aika kainanoaki n te specific industry (n aekakin te services ibukin te mwane ke te aoraki).
Close

Jagon Baster

Encryption

Te mwakuri ae bita te data nakon te cipher text (te aekaki ni code) ni kamanoa bwa e na aki ataki nanona irouia party aika akea kariaiakaia.

Vulnerability

Taian product aika kairua, mwakuri ke aroaro aika kaoti ae a karaoa te kaombiuta bwa e na mamara ni kaitarai taian malicious user ke user aika bubuaka.

Kakaea nako riki