Information security is designed to protect the confidentiality, integrity and availability of computer system data from those with malicious intentions.
Information security handles risk management. Sensitive information must be kept - it cannot be changed, altered or transferred without permission. Information security
is the set of processes that protects information assets, it is a strategy comprised of the processes, tools and policies necessary to prevent, detect, document and counter threats.