Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
20 Cards in this Set
- Front
- Back
|
Sensitive Data
|
Any information that can result in a loss of security, or loss of advantage to a company, if accessed by unauthorized persons
|
|
|
Public Data
|
Has no impact to the company if released and is often posted in the open-source environment.
|
|
|
Private Data
|
Contains data that should only be used within the organization
|
|
|
Confidential Data
|
Highest classification level that contains items such as trade secrets, intellectual property data, source code, and other types that would seriously affect the business if disclosed
|
|
|
Unclassified data
|
Data than can be released to the public. |
|
|
Sensitive but Unclassified
|
Items that wouldn’t hurt national security if released but could impact those whose data is contained in it
|
|
|
Confidential Data
|
Data that could seriously affect the government if unauthorized disclosure were to happen
|
|
|
Secret Data
|
Data that could seriously damage national security if disclosed
|
|
|
Top Secret Data
|
Data that could gravely damage national security if it were known to those who are not authorized for this level of information
|
|
|
Data Owner
|
ultimate responsibility for maintaining the confidentiality, integrity and availability of the information asset
|
|
|
Data Steward
|
A role focussed on the quality of the data and associated metadata
|
|
|
Data Custodian
|
A role responsible for handling the management of the system on which the data assets are stored
|
|
|
Privacy officer
|
A role responsible for the oversight of any PII/SPI/PHI assets managed by the company
|
|
|
Personal Identifiable Information (PII)
|
A piece of data that can be used either by itself or in combination with some other pieces of data to identify a single person
|
|
|
Privacy Act of 1974
|
Affects U.S. government computer systems that collects, stores, uses, or disseminates personally identifiable information
|
|
|
(HIPAA)
|
Affects healthcare providers, facilities, insurance companies, and medical data clearing houses
|
|
|
Sarbanes-Oxley (SOX)
|
Affects publicly-traded U.S. corporations and requires certain accounting methods and financial reporting requirements
|
|
|
Gramm-Leach-Bliley Act (GLBA)
|
Affects banks, mortgage companies, loan offices, insurance companies, investment companies, and credit card providers
|
|
|
Federal Information Security Management (FISMA)
|
Requires each agency to develop, document, and implement an agency-wide information systems security program to protect their data
|
|
|
Help America Vote Act (HAVA) of 2002
|
Provides regulations that govern the security, confidentiality, and integrity of the personal information collected, stored, or processed during the election and voting process
|
