Vulnerabilities to the IS system

As there is no extranet service available through which external bodies can view the data, there is no external threat in this regard. As far as the internal threat is concerned, each employee is given a password to access the information. However the information can only be viewed and not edited. Changes can only be made by the administration. So this makes the system quite secure and reliable. Therefore there are no major risks or vulnerabilities faced by NESPAK’s IS system.