Information Security Management

Organization of Information Security Management

In every company, no matter how fine-tuned the elements of information security management are, there are threats, vulnerabilities and potential risks, so to be competitive and achieve business objectives, organizations must do everything possible to identify, assess and handle all of them, or at least the most relevant ones. This is called risk management, which…

Internal audit of a medical organization

Internal audit of a medical organization

Approaches to the organization of the internal audit function in a medical organization can be classical, focused on the International Framework for the Professional Practice of Internal Auditing, developed by the Institute of Internal Auditors. This organization of control activity is based on the concept of Three Lines of Defense. Control environment of medical organization…