Skip to product information
1 of 2

Hemang Doshi

CISA Exam-Testing Concept-Classification of Information Assets (Domain-5)

CISA Exam-Testing Concept-Classification of Information Assets (Domain-5)

Regular price $1.00 USD
Regular price Sale price $1.00 USD
Sale Sold out
Shipping calculated at checkout.
Quantity

Point to remember for CISA Exam:

(1)In any given scenario, following are the logical steps for data classification:

-First step is to have inventory of Information Assets.
-Second step is to establish ownership.
-Third step is classification of IS resources.
-Fourth step is labelling of IS resources.
-Fifth step is creation of access control list.

(2) In any given scenario, data owner/system owner is ultimately responsible for defining the access rules.

(3)In any given scenario, accountability for the maintenance of proper security controls over information assets resides with the data owner/system owner.

(4)In any given scenario, greatest benefit of well defined data classification policy is decreased cost of control.

(5)In any given scenario, most important objective of data protection is to (i) ensure integrity/confidentiality of data and (ii) establish appropriate access control guidelines.

(6)Data classification must take into account following requirements:

-Legal/Regulatory/Contractual
-Confidentiality
-Integrity
-Availability

View full details