Data & Information Flashcards
What is the difference between data and information?
o Data
▪ Wide range of items from customer details, and financial records, to
internal communication
o Information
▪ Processed data that provides value and context
Name 2 data protection regulations?
Data protection regulations like the General Data Protection Regulation (known
as GDPR) within the European Union and the California Consumer Privacy Act
(or CCPA) in the United States, which both mandate stringent data protection
measures
What is intellectual property?
Creations of the mind, such as inventions, literary and artistic works,
designs, symbols, names, and images used in commerce
What are copyrights?
● Legal term used to describe the rights that creators have over
their literary and artistic works
● Copyrights typically lasts for the life of the author plus 15 to 70
years after their death
What are trademarks?
● Sign used to distinguish the goods or services of one enterprise
from those of other enterprises
● Trademarks work by giving the trademark owner the exclusive
right to use their mark in relation to the products or services for
which it is registered
● Trademarks can be renewed indefinitely, unlike copyrights and
patents
What are patents?
● Patents work by giving the inventor the exclusive right to prevent
others from making, using, or selling the invention without their
permission for a limited period, usually 20 years
● A unique aspect of patents is the requirement for public
disclosure of the invention
What is DRM?
o Digital Rights Management (DRM)
▪ Systematic approach to copyright protection for digital products
▪ DRM encrypts the content of a digital product and allowing access only to
those who have the necessary decryption keys
What are 3 categories of security controls?
● Administrative Controls
● Physical Controls
● Technical Controls
What are administrative security controls, give examples
- Policies, procedures, and practices that establish the
framework for an organization’s security posture - Examples of administrative controls
▪ Security awareness training
▪ Security policies and procedures
▪ Access control policies
▪ Incident response plans
▪ Risk assessments
What are physical controls, give examples
● Physical Controls
* Involve the use of physical measures to protect assets and
prevent unauthorized access
* Examples of physical controls
▪ Locks
▪ Security Cameras
▪ Fences
▪ Access Control Systems
▪ Biometric Authentication
▪ Secure Storage Facilities
What are technical controls, give examples
● Technical Controls
* Implemented through technology solutions to protect
information systems and data
* Examples of technical controls
▪ Firewalls
▪ Intrusion Detection and Prevention Systems
▪ Encryption Mechanisms
▪ Antivirus Software
▪ Vulnerability Assessments
▪ Access Control Mechanisms
▪ Network Segmentation
What are other categories of specific security controls?
Regular data backups
Access controls - permissions, usage restrictions, data encryption, firewalls
What is ROSI?
Return on security investment
What is data analytics
▪ Involves applying statistical analysis and logical techniques to interpret,
transform, and summarize data
What do we get from data analytics?
Information and insights
