Abstract

The kind of information managed in a doping control laboratory is really of sensitive nature. The Doping Control Laboratory of Madrid is currently implementing a new information system. This information system will become the neural system of the laboratory, guiding technicians and capturing and saving all the information produced. Therefore, is crystal clear that the implementation of an Information Security Management System (ISMS) becomes a key point in the robustness of the whole system. In order to understand what the ISMS means, it can be considered as the Quality System, but in terms of a safe management of the information. The goal of the system is to preserve the confidentiality (only allowed people can access to the information), integrity (prevent the changing of results) and availability, on which everything else depends. The implementation of the ISMS in a laboratory allows warranting that the security risks are identified, managed and minimized according to a systematic and efficient way, such methodology leads to a continuous improvement in the information management. Einleitung