IN THIS CHAPTER

Classifying, mapping, and labeling data

Designing Information Rights Management (IRM)

Knowing when, how, and why to retain and delete data

Understanding logging and auditing of data events

In this chapter, you learn about data classification, mapping, and labeling, and the key data security concepts that apply to various stages of the data lifecycle — data retention, deletion, auditing, and more. Domain 2: Cloud Data Security is the most heavily weighted domain on the CCSP exam, representing 20 percent of the certification. This chapter covers the second half of Domain 2.

Planning and Implementing Data Classification

Data classification is the process of categorizing and organizing data based on level of sensitivity or other characteristics. Classification is a complementary step to data discovery and is a critical component for risk management, data security, and compliance. Proper data classification is required in order to determine what policies and controls are required to protect specific data types and categories ...