none
Information Security: which are the best localization and IT translation strategies? RRS feed

  • Question


  • As the market has new figures and growing opportunities which are linked to software development, we always need to keep updated and know about recent trends, for example delivering translation services safely, all related to Information Security.


    From your business perspective, which are the best localization and IT strategies?
    • Edited by EmilianoSosa Wednesday, December 23, 2009 8:10 PM
    Friday, November 6, 2009 7:32 PM

Answers

  • Here is a website: www.dhs.gov

    where you can read and learn about IT strategies and risk management for information security.
    • Marked as answer by Kevin Remde Sunday, May 23, 2010 1:20 PM
    Saturday, November 7, 2009 11:08 PM
  • You point to important issue concerning Information Security and IT. Thanks.

    Another useful website that IT Managers must follow:http://www.itsecurity.com
    • Proposed as answer by Jamshid HASHIMI Friday, November 20, 2009 8:43 AM
    • Marked as answer by Kevin Remde Sunday, May 23, 2010 1:20 PM
    Friday, November 20, 2009 8:43 AM


  • This is why Information Security is increasing its relevance and is part of the clients' decision when selecting a translation company. We need to consider what will clients expect from translations regarding information security.

    Besides non-disclosure agreements with broader responsibilities to comply with Sarbanes Oxley act and to comply with Information Security standards like for example BS7799, ISO17799 and ISO27001; we also need to think about digital signatures for e-mails and documents issued by clients, usually free and with help desk support or issued by a Certificate Authority (CA) usually paid but with universal validity. As well security in your website including SSL, HTTPS and yellow lock. Do you know when are these necessary? You can find more information also by reading about the Department of Homeland Security.

    About these trends and delivering translation services safely, as we can notice Information Security is an important factor for implementation of information security best practices.

    About Security Consultancy, almost every company has at least an external Law Office to receive advice from, regardless of whether they have their own in-house lawyers or not. Similarly, despite having IT employees in your organization, you need external counseling and support on Information Security for Security Policies. Having Security Policies in your organization is the first step and it is not expensive at all. Implementation of information security includes security training, which is the critical factor as you need to show your clients your team takes good care of their information.

    Always monitor if your team well trained in IT. And what about Information Security? If, as usual, your answer is "not enough", your employees are the ones who put your information and the information trusted to you by your clients at risk, just because they are not trained in Information Security issues.

    Some actions can cause real problems if they install software when it is not necessary or open virus-infected e-mails.  Also if they visit infected websites and if they are cheated by hackers who use "social engineering", or when they leave their PCs unlocked and their notebooks alone in non-secure areas.

    To prevent these issues always implement software updates, antivirus, etc. Recently a virus named "Confiker" became very popular, infecting roughly 10% of Windows PCs in the world. But no PC would have been infected if administrators would have installed software updates that were available since 2007. Make sure you use licensed software and that you have an IT administrator in charge of keeping it updated.

    Would a main client trust their information to be processed on illegal software?

    As you know computers are turning mobile, more and faster, so information is more likely to be disclosed or lost. For this reason to prevent disclosure use encryption systems, to prevent lost consider backup systems or to prevent both simultaneously, consider to migrate to "cloud computing" by using some collaborative sites and tools, such as Google Docs, but be aware that you are exposing your information to a third company.

    It is expected that companies will increase the number of translations where one part of the information is provided to one company, and the other is provided to a different one or restricted to be translated in-company. This concept is also related to "separation of duties".

    In projects where data protection is a critical factor, clients tend to trust their information only to those agencies or companies who are able to prove their information security processes reliability. How difficult is to obtain an international certification of quality and/or information security?

    This is why companies like traduk.com values today this interesting approach to the translation market and considers it has to be based on software developers and translators working together.


    • Marked as answer by Kevin Remde Sunday, May 23, 2010 1:20 PM
    Wednesday, December 23, 2009 8:12 PM

All replies

  • Here is a website: www.dhs.gov

    where you can read and learn about IT strategies and risk management for information security.
    • Marked as answer by Kevin Remde Sunday, May 23, 2010 1:20 PM
    Saturday, November 7, 2009 11:08 PM
  • You point to important issue concerning Information Security and IT. Thanks.

    Another useful website that IT Managers must follow:http://www.itsecurity.com
    • Proposed as answer by Jamshid HASHIMI Friday, November 20, 2009 8:43 AM
    • Marked as answer by Kevin Remde Sunday, May 23, 2010 1:20 PM
    Friday, November 20, 2009 8:43 AM
  • Thank you Jamshid.

    You can also download a PPT presentation about this: http://www.traduk.com/latest-news-in-the-translation-business.html

    We will keep these postings updated for new strategies about Information Security and IT.

    Best regards,

    Emiliano
    Friday, November 20, 2009 2:32 PM


  • This is why Information Security is increasing its relevance and is part of the clients' decision when selecting a translation company. We need to consider what will clients expect from translations regarding information security.

    Besides non-disclosure agreements with broader responsibilities to comply with Sarbanes Oxley act and to comply with Information Security standards like for example BS7799, ISO17799 and ISO27001; we also need to think about digital signatures for e-mails and documents issued by clients, usually free and with help desk support or issued by a Certificate Authority (CA) usually paid but with universal validity. As well security in your website including SSL, HTTPS and yellow lock. Do you know when are these necessary? You can find more information also by reading about the Department of Homeland Security.

    About these trends and delivering translation services safely, as we can notice Information Security is an important factor for implementation of information security best practices.

    About Security Consultancy, almost every company has at least an external Law Office to receive advice from, regardless of whether they have their own in-house lawyers or not. Similarly, despite having IT employees in your organization, you need external counseling and support on Information Security for Security Policies. Having Security Policies in your organization is the first step and it is not expensive at all. Implementation of information security includes security training, which is the critical factor as you need to show your clients your team takes good care of their information.

    Always monitor if your team well trained in IT. And what about Information Security? If, as usual, your answer is "not enough", your employees are the ones who put your information and the information trusted to you by your clients at risk, just because they are not trained in Information Security issues.

    Some actions can cause real problems if they install software when it is not necessary or open virus-infected e-mails.  Also if they visit infected websites and if they are cheated by hackers who use "social engineering", or when they leave their PCs unlocked and their notebooks alone in non-secure areas.

    To prevent these issues always implement software updates, antivirus, etc. Recently a virus named "Confiker" became very popular, infecting roughly 10% of Windows PCs in the world. But no PC would have been infected if administrators would have installed software updates that were available since 2007. Make sure you use licensed software and that you have an IT administrator in charge of keeping it updated.

    Would a main client trust their information to be processed on illegal software?

    As you know computers are turning mobile, more and faster, so information is more likely to be disclosed or lost. For this reason to prevent disclosure use encryption systems, to prevent lost consider backup systems or to prevent both simultaneously, consider to migrate to "cloud computing" by using some collaborative sites and tools, such as Google Docs, but be aware that you are exposing your information to a third company.

    It is expected that companies will increase the number of translations where one part of the information is provided to one company, and the other is provided to a different one or restricted to be translated in-company. This concept is also related to "separation of duties".

    In projects where data protection is a critical factor, clients tend to trust their information only to those agencies or companies who are able to prove their information security processes reliability. How difficult is to obtain an international certification of quality and/or information security?

    This is why companies like traduk.com values today this interesting approach to the translation market and considers it has to be based on software developers and translators working together.


    • Marked as answer by Kevin Remde Sunday, May 23, 2010 1:20 PM
    Wednesday, December 23, 2009 8:12 PM