Information security objecitves 

Information security objectives are the goals or intentions that an organisation wants to achieve in order to ensure the protection of its information resources. These objectives are fundamental to the development and implementation of an information security management system (ISMS) and guide the organisation's approach to protecting data and systems.

These objectives form the basis of an organisation's information security strategy and serve as a guide for developing policies, controls and procedures to protect the confidentiality, integrity, availability, authenticity and non-repudiation of information. Achieving these objectives helps to mitigate risk, protect against cyber threats and ensure the organisation's compliance with relevant laws and regulations.

While the three information security objectives of confidentiality, integrity and availability are often considered to be given, future implementations should also include authenticity and non-repudiation.