The information security not only has become a relevant business subject but also a complex decision topic for non-technical people. Legal framework, monitoring security, best practices, standards compliance are part of the security solutions but they can become in the principal complexity affair. This paper shows a general security overview to converge in an initial functional security model in order to achieve a complete solution. The preliminary approach tries to give tools for experts and non-experts managers and let them easily to understand and to apply a solid security framework.
