Asset Management

Question 1

any data, device, or other component of value to an organization

Answer 1

Asset

Question 2

the process of organizing assets by relevant categories

Answer 2

Classification

Question 3

US Federal government asset classification system

Answer 3

FIPS 199

Question 4

standard that requires that information and information systems be categorized as low, medium or high security based on confidentiality, integrity and availability criteria

Answer 4

FIPS 199

Question 5

US National Security Definitions of confidentiality

Answer 5

Top Secret
Secret
Confidential
Controlled Unclassified Information
Unclassified

Question 6

formal determination of level of subject access

Answer 6

Security clearance

Question 7

Private sector classification schema

Answer 7

No hard definition, should be codified in a policy and standards

Question 8

Private Sector Classification process

Answer 8

1. Define classifications
2. Identify and categorize data sets and systems
3. Assign Classification Labels
4. Publish Handling Standards
5. Train Users
6. Enforce Standards

Question 9

Asset sensitivity generally relates to this characteristic

Answer 9

Content

Question 10

Asset criticality generally relates to this characteristic

Answer 10

Operational Value

Question 11

Applied to subjects and is a formal determination of level of trust

Answer 11

Security clearance