There is no such thing as perfect security. You have to know precisely what is the information compiled in different divisions really worth, and how would a conscious or natural damage or breach of information security affect your company’s activities.