Data Security – Types, Restrictions and Risks

Posted on January 25, 2022 by Muhammad Rawish Siddiqui

Types of Data Security

Facility Security
Device Security
Credential Security
- Identity Management Systems
- User ID Standards for Email Systems
- Password Standards
- Multiple Factor Identification
Electronic Communication Security

Data Security Restrictions Types

Confidentiality level
- Internal Use Only
- Confidential
- Restricted Confidential
- Registered Confidential
Regulation
- Sample Regulatory Families
- PII – Personal Identification Information
- PPI – Personal Private Information
- PHI – Medically Sensitive Data/Personal Health Information
- Educational Records
- Financially Sensitive Data
- Industry or Contract-based Regulation
- Payment Card Industry Data Security Standard (PCI-DSS)
- Competitive advantage or trade secrets
- Contractual restrictions

System Security Risks

Abuse of Excessive Privilege
Abuse of Legitimate Privilege
Unauthorized Privilege Elevation
Service Account or Shared Account Abuse
Platform Intrusion Attacks
SQL Injection Vulnerability
Default Passwords
Backup Data Abuse

Leave a Reply Cancel reply

Muhammad Rawish Siddiqui

Master’s degree in computer science with Specialization in Software Engineering and Earned PGD in Management Information System. Accumulated 20+ years’ Information Technology, Data Governance, Data Management, and Compliance related consecutive hands-on experience, possess diversified business and technical background across the Aviation, Healthcare, Investment, Education, and Construction sectors.

45+ Online Professional Certifications, which includes:
• CDMP – Certified Data Management Professional
• CDPO – Certified Data Protection Officer
• GDPR – General Data Protection Regulation Practitioner
• EDRP – EC-Council Disaster Recovery Professional
• AWS Certified Cloud Practitioner
• Oracle Enterprise Data Management Professional
• Oracle Database Cloud Certified Professional
• ITIL – Information Technology Infrastructure Library (ITSM – IT)

Experience includes leading data governance and management initiatives, ensuring compliance with NDMO, GDPR and KSA PDPL, and implement/improve data security, privacy, & protection. Expertise spans a wide variety of platforms, tools, technologies, hardware, software, and operating systems.

Served in leadership capacities such as Manager – Data Management, Sr. Team Lead – Database Specialist, Sr. Team Lead Consultant, Sr. Applications DBA, Sr. Resident Consultant, and Manager Systems.