Let’s begin Information Security by classifying an Organization’s Data in order to identify which Data requires Protection. The Overall Process includes the following steps: Identify and Classify Sensitive Data Assets …
Data Security – CRUD or CRUDE Matrix
A CRUD or CRUDE matrix is a useful way to capture and display activities and permissions within a system. You can use a CRUD matrix to observe how Processes handle …
ISMS – ISO/IEC-27001:2013 – Annex A
What Is ISO/IEC 27001:2013 and Why Does It Matter in Information Security ISO/IEC-27001:2013 is the International Security Standard and Best Practice Guidelines, which details the requirements for an ISMS, for …
Data Security in Data Management
Defining Data Security in Information Management Rule of Thumb: CIA Triad – Confidentiality, Integrity, and Availability. Data Security includes the planning, development, and execution of security policies and procedures to …