Chapter 6
Domain 2: Cloud Data Security, Part 2
IN THIS CHAPTER
Classifying, mapping, and labeling data
Designing Information Rights Management (IRM)
Knowing when, how, and why to retain and delete data
Understanding logging and auditing of data events
In this chapter, you learn about data classification, mapping, and labeling, and the key data security concepts that apply to various stages of the data lifecycle — data retention, deletion, auditing, and more. Domain 2: Cloud Data Security is the most heavily weighted domain on the CCSP exam, representing 20 percent of the certification. This chapter covers the second half of Domain 2.
Planning and Implementing Data Classification
Data classification is the process of categorizing and organizing data based on level of sensitivity or other characteristics. Classification is a complementary step to data discovery and is a critical component for risk management, data security, and compliance. Proper data classification is required in order to determine what policies and controls are required to protect specific data types and categories ...