Domain 2: (Asset Security) Flashcards
What is the data lifecycle steps?
Create
Store
Use
Share
Archive
Destroy
What are the data security controls?
Marking
Labeling
Handling
Classification
Destruction
Record retention
What is the data destruction methods?
Erasing
Clearing
Purging
Degaussing
Destruction
What creates a strong magnetic field that erases data on a media?
Degaussing
What is the final stage in the lifecycle of media and is the most secured method for sanitization?
Destruction
What are the four levels of data classification for Non-gov’t (public) orgs?
(Class 0) Public
(Class 1) Sensitive
(Class 2) Private
(Class 3) Confidential/Proprietary
What role represents someone who is usually a member of senior management and who can delegate some day-to-day duties pertaining to data ownership/management?
Data owner
What role is usually someone in the IT dept and does not decide what controls are needed but implements controls for the data owner?
Data custodian
Who is responsible for granting appropriate access to personnel?
Data Admins
What role owns the assets or system that processes sensitive data and associated security plans?
Asset Owners
What person is someone who processes personal data soley on behalf of the data controller?
Data processer
What person is someone who processes personal data solely on behalf of the data controller?
Data processer
Who is the person or entity that controls the processing of data?
data controller
Who restricts data transfers to countries outside the EU?
GDPR
What represents the process of removing all relevant data so that it is impossible to identify original subject or person?
Anonymization
