Professional Documents
Culture Documents
Isc2 Cissp 2 2 1 Establish Information and Asset Handling Requirements
Isc2 Cissp 2 2 1 Establish Information and Asset Handling Requirements
Objectives:
Understand and apply the recommended guidance to establish information and asset
handling requirements through your daily practice as an information security
professional.
External Resources:
https://www.centos.org/docs/5/html/Deployment_Guide-en-US/sec-mls-ov.html
Media - MUST encrypt to ensure Confidentiality | Need Physical & Technical / Logical & Administrative Controls
Handling - Document ALL policies and procedures | Communicate broadly and Train all personnel
Storing - Encrypt
Retention Periods - Clearly defined & documented | ONLY keep data for as long
as retention period | Different data = different retention periods
1. Data Inventory -
2. Securing Data -
3. Audit -