Types of Data Security
- Facility Security
- Device Security
- Credential Security
- Identity Management Systems
- User ID Standards for Email Systems
- Password Standards
- Multiple Factor Identification
- Electronic Communication Security
Data Security Restrictions Types
- Confidentiality level
- Internal Use Only
- Confidential
- Restricted Confidential
- Registered Confidential
- Regulation
- Sample Regulatory Families
- PII – Personal Identification Information
- PPI – Personal Private Information
- PHI – Medically Sensitive Data/Personal Health Information
- Educational Records
- Financially Sensitive Data
- Industry or Contract-based Regulation
- Payment Card Industry Data Security Standard (PCI-DSS)
- Competitive advantage or trade secrets
- Contractual restrictions
System Security Risks
- Abuse of Excessive Privilege
- Abuse of Legitimate Privilege
- Unauthorized Privilege Elevation
- Service Account or Shared Account Abuse
- Platform Intrusion Attacks
- SQL Injection Vulnerability
- Default Passwords
- Backup Data Abuse