Information Assurance

Information Assurance is a term that is closely linked to Information Security and is often erroneously used interchanngeably. The concept of information assurance goes well beyond that of simply ensuring that an organisation's information is secure, but encompasses an holistic enterprise/organisation wide view of information related risks and their avoidance and resolution.

Most consultants within the field believe that information assurance in the commercial world is an executive board corporate governance issue that requires clear strategic thinking and positive action to address.

The U.S. National Information Systems Security Glossary defines Information systems security (INFOSEC) as:

Measures that protect and defend information and information systems by ensuring their availability, integrity, authentication, confidentiality, and nonrepudiation. These measures include providing for restoration of information systems by incorporating protection, detection, and reaction capabilities.

External Sources

Information Assurance Advisory Council (UK) http://www.iaac.org.uk/
Vistorm http://www.vistorm.com/261.html

Master of Science in Information Assurance, Capitol College, MD. (US) http://www.capitol-college.edu/academicprograms/graduateprograms/msiae/index.shtml