Key words Flashcards
What is Data availability?
Info being accessed
Measured in percentages - e.g. What percentage of time will the system be online and available
What is data security?
Data being protected from unauthorized access, modification, or deletion
What is data sovereignty?
Data in storage is subject to laws of the country upon which the storage device is located.
Ownership, who owns it.
What is data confidentiality?
Property of data, which is unauthorized for disclosure.
What is data retention?
How long you keep the data for.
What is an Information commissioner?
Person who has the power to enforce the act.
What is a data controller?
person or company that collects and keeps the data.
What is data subject?
Person who has data about them stored outside their direct control.
How many steps are there in a NIST contingency plan?
7
What are the steps in a NIST contingnecy plan?
1-develop contingency planning policy statement
2-conduct the business impact analysis BIA
3-identify preventative controls
4-create contingency strategies
5-develop an info system contingency plan
6-ensure plan testing, training and exercises
7-ensure plan maintenance
Preventative Maintenance - routine maintenance carried out to help prevent failures due to gradual deterioration and to promote a longer trouble-free life
Predictive Maintenance - monitored resource reaches a specific level indicating that a failure is about to occur
Reactive Maintenance - carried out when there is a failure
What is principle of least privilege?
Makes it so that your company has to make sure that data is available to staff in order to perform, their job. Other than than that limit your staff so that they can only see information which is relevant for them to provide their job.