Information Security Plan: Examples & Incident Response

Instructor: David Gloag

David has over 40 years of industry experience in software development and information technology and a bachelor of computer science

Protecting information is important these days. In this lesson, we'll take a look at information security, what it is, an example information security plan, and how incident response is related.

The Threat to Information

We regularly hear about information being stolen or compromised. In 2015 alone, there were quite a few. At the Office of Personnel Management, it was 21-25 million federal worker records. At Ashley Madison, it was 37 million clientele records. And at Anthem, it was 80 million patient and employee records. That's only the tip of the iceberg! The numbers we're talking about here are almost at epidemic proportions. But what can we do? Surely there is something that can help stem the tide? Fortunately, there is, and it's already underway. Future efforts will need to be more dedicated, understanding, and organized. We're talking about information security plans and incident responses.

What is Information Security?

Information security is the area of information technology that focuses on the protection of information. In particular, its efforts concentrate on recognizing, removing, and defending against, any malicious effects on a company's information. Given the examples noted in the previous section, this isn't trivial, and will require a number of different technologies to accomplish. As examples, pass cards or codes for access to buildings, user ids and passwords for network login, and finger print or retinal scanners when security must be state-of-the-art. Clearly, each technology used is unique, and that is necessary for the diverse situations in which information is stored and used.

What is an Information Security Plan?

An information security plan is a detailed account of the goals, current state, and desired state of information security at an organization. It also enumerates the steps needed to bring the organization to where it needs to be in terms of information security. Think of it like a trip plan for a vacation. It tells you where you are, things to watch out for, where you are going, and lists the things you want to do or see. Ultimately, information security plans provide a detailed and methodical approach to analyzing, and improving, the information security status within an organization.

An Example Information Security Plan

An example information security plan might look as follows:

Information Security Plan Example

To unlock this lesson you must be a Member.
Create your account

Register to view this lesson

Are you a student or a teacher?

Unlock Your Education

See for yourself why 30 million people use

Become a member and start learning now.
Become a Member  Back
What teachers are saying about
Try it risk-free for 30 days

Earning College Credit

Did you know… We have over 200 college courses that prepare you to earn credit by exam that is accepted by over 1,500 colleges and universities. You can test out of the first two years of college and save thousands off your degree. Anyone can earn credit-by-exam regardless of age or education level.

To learn more, visit our Earning Credit Page

Transferring credit to the school of your choice

Not sure what college you want to attend yet? has thousands of articles about every imaginable degree, area of study and career path that can help you find the school that's right for you.

Create an account to start this course today
Try it risk-free for 30 days!
Create an account