Based on the nature of the information, we can classify information into two board categories; private and public. Public information are open to anybody since it may not cause any harm to the public and hence it is not necessary to protect it whereas private information are intended for a specific group of people and hence it should be protected from unauthorized use. Private information can be manipulated, modified or misused in many ways for personal gains and such manipulations may cause immense problems to others and hence it is necessary to protect it from unauthorized use.
Most of the current organizations store their information on computers. Staff details, client lists, salaries, bank account details, marketing and sales information etc are currently stored in the computers. If this volatile or sensitive information come in the hands of the competitors, an organization may suffer a lot. So, most of the organizations are currently spend enormous amount of money for information security. This paper briefly analyses the necessity of information security in modern organizations.
Computers, peripherals and networks are essential equipments in modern organizations for the communication and data/information storing purposes. No organization can survive in the current world without using computers and internet. But the major disadvantage in using computers for storing information is the possibility of leakage confidential information. There are people who accepted hacking as their main revenue source and they are capable of breaking the firewalls created for the protection of the information stored in a computer. It is easy for a hacker to break the firewalls and plant viruses inside a computer apart from taking out all the information he or she wants.
Earlier information security solutions mainly focused on preventing the external threats. But currently organizations realized that internal threat is as important as the