cyber security

In cybersecurity, effective information management begins with knowing what information the organization has, where it is located, how it is used, where it flows and identify who has access to it. Understanding where information is located and how it is used is essential in identifying risk which may prevent information from being available when required. Information is sensitive and/ or critical if information need to be protected to ensure confidentiality, integrity and availability. Confidentiality information such as information that is governed by stringent legislation, customer or prospective customer data, passwords, encryption keys, employee personal and private information, payroll information, and company’s business plan should always be protected. One way to vet an information is to categorize it importance. The four stages of information lifecycle include; Identify (identification classification, labeling, and documentation), protection (usage, transfer, storage/ archival), Retain (Retention period and retention action), and purge.

References