admin's picture


By Harlyne Joku

PORT MORESBY, Papua New Guinea (April 8, 2001 - The National/PINA Nius Online)---Papua New Guinea companies need to formulate a Corporate Information Security Policy, a conference here heard.

Bank South Pacific chief manager (operations) Tony Westaway told participants at the 2001 ISACA (Information Systems, Audit and Control Association) conference:

"Many of you here are fully aware of the need for corporations to invoke an information security or corporate security policy, but I suspect many companies here in PNG do not have one."

He said the field of information technology's enormous growth, combined with increasing affordability, means that more and more companies are assessing the benefits and the risks of e-commerce.

He explained that one of the basic objectives of the ISACA Papua New Guinea charter is to create awareness of standards and proper practices in information technology, IT.

Mr. Westaway said: "Key players in an organization’s hierarchy, from senior management to auditors and directors, are attempting to sort out the wheat from the chaff on IT issues ... they want to reap the rewards of technological capabilities, while at the same time they need to ensure that the organization and its assets are protected."

He said that in too many organizations IT security is threatened by a number of "human factors" that can be easily overcome.

"These (human factors) include lack of awareness, insufficient attention by top management or board, or general complacency in attitude towards IT usage policies.

"Every organization in which IT is a part of the everyday business operation should have a written policy outlining the company's position on information, ownership, transmission and computer use."

For additional reports from The National, go to PACIFIC ISLANDS REPORT News/Information Links: Newspapers/The National (Papua New Guinea).

Pacific Islands News Association (PINA) Website: 

Rate this article: 
No votes yet

Add new comment