Keeping information secure, is of ultimate importance in today's competitive and networked business environment. As the economy grows and technology changes, it is important to keep the networks, servers and PCs secure. For security measures, the US Sarbanes-Oxley Act guides on the assessment and evaluation of internal controls. This article elaborates the role of IT professionals in implementing security measures effectively.

IT has moved from simple to complex after the introduction of IBM Personal Computers in 1982. As each and every information is unique and precious, keeping them secure is essential in the world of cut-throat competition for basic survival and excellence. Advanced networks are needed to meet sophisticated requirements. Firms should begin instituting sophisticated changes by providing consultation, hardware, installation and regular management, adopting Internet-based business models in corporate security. Information Security Policy (ISP), plays a vital role for the endurance of the industries going in for advanced trends, both prevailing and forthcoming. Since information is seriously exposed, there is a need for information security in today's highly networked business environment. Since for any organization information is a prized possession, it should be protected in all angles.

Significant role must be played by IT security management, right from the computer operator to the Chief Information Security Officer (CISO), to manage an enterprise information security program as per the regulatory compliance. From the regular job of controlling punch cards to negotiating strategic plans, documentation processes, managing technology, measuring performance, controlling costs, supporting business re-engineering, all are prone to high-level of risks. Firms implementing high-tech IT into their existing business models must undertake a proper risk assessment procedure. Since most firms use internet as a key business driver, they can no longer afford to be tranquil about security. Mission critical Enterprise Resource Planning (ERP) applications should be increased at an alarming rate for sustaining constant security for e-business applications. By seeing the strong security measures adapted through tiered networks, CISO must ensure that the information the firm needs, is reliable to achieve its reporting objectives.

E-Business Magazine, Business Environment, Sarbanes-Oxley Act, Information Security Policy, ISP, Chief Information Security Officer, CISO, Enterprise Resource Planning, ERP, Data Encryption, Wide Area Networks, WAN, multiple Service Set IDentifiers, SSIDs, Enterprise Risk Management, ERM, Virtual Private Network, VPN, Dynamic Host Configuration Protocol, DHCP, Domain Name System, DNS, Open Shortest Part First , OSPF, Cisco Certified Internetwork Expert, CCIE,Internet Information Sevices, IIS.