Assets

Question 1

An Asset by definition…

Answer 1

Anything worth to an organization. This includes people, partners, equipment, facilities, reputation, and information.

Question 2

Primary Purpose of Data Classification is to…

Answer 2

Indicate the level of confidentiality, integrity, and availability protection that is required for each type of data set.

Question 3

IT Asset Life Cycle

Answer 3

• Business Case
• Create or Acquire
• Operate and Maintain
• Replace or Dispose

Question 4

ISO for consistent approach to Supply Chain

Answer 4

ISO 28000:2007

Question 5

Steps to Decommissioning an Asset

Answer 5

• Decommission only within the change management process
• Ensure that the asset is no longer in use
• Review that impact on data retention
• Securely wipe any data on the asset
• Safely dispose of the hardware

Question 6

Life of data into 6 phases

Answer 6

• Acquisition
• Storage
• Use
• Sharing
• Archival
• Destruction

Question 7

Some countries have ________ laws that require certain type of data to be stored and processed in that country.

Answer 7

Data Localization Law

Question 8

Other Countries have enacted __________ laws that stipulate that anyone who stores or process certain types of data (typically personal data of their citizens), whether or not they do so locally, must comply with those countries’ laws

Answer 8

Data Sovereignty laws

Question 9

Electronically stored information (ESI) or E-Discovery is ….

Answer 9

The process of producing for a court or external attorney all ESI pertinent to a legal proceeding.

Question 10

NIST SP 800-88 Revision 1

Answer 10

Guidelines for Media Sanitization

Question 11

Four ways eliminating data remnanence

Answer 11

• Overwriting
• Degaussing
• Encryption
• Physical Destruction