Organizations use information classification to help users understand the security requirements around handling different types of information. In this video, learn information classification techniques, including assigning information to classification levels, labeling classified information, and proper information handling and disposal practices.
- [Instructor] Organizations use information classification…to help users understand the security requirements…around handling different types of information.…Data classifications policies…describe the security levels of information…used in an organization,…and the process for assigning information…to a particular classification level.…The different security categories…or classifications used by an organization…determine the appropriate storage,…handling, and access requirements…for classified information.…
Security classifications are assigned…based upon both the sensitivity of information…and the criticality of that information to the enterprise.…Classification schemes vary,…but all basically try to group information…into high, medium, and low sensitivity levels,…and differentiate between public and private information.…For example, the military uses the familiar…top secret, secret, confidential,…and unclassified classification scheme.…A business, on the other hand,…might use friendlier terms to accomplish the same goal,…
To join one of Mike's free study groups for access to bonus tips and practice questions, visit certmike.com.
- The security triad: confidentiality, integrity, and availability
- Security principles
- Resource security
- Data security
- Security controls
- Assessing security controls
- Security policy
- Physical security
Skill Level Intermediate
Q: This course was updated on 05/18/2018. What changed?
A: New videos were added that cover software licensing. In addition, the following topics were updated: integrity, leveraging industry standards, data encryption, security control selection and implementation, audits and assessments, security policy framework, security policy training and procedures, and ethics.
Insights from a Cybersecurity Professionalwith Mike Chapple32m 15s Intermediate
1. The Security Triad
2. Security Principles
3. Resource Security
4. Data Security
5. Data Security Controls
6. Security Controls
Control frameworks3m 55s
7. Assessing Security Controls
8. Security Policy
9. Awareness and Training
10. Physical Security
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.