Data-Ed Online: How Safe is Your Data? Data Security Webinar

2,315 views

Published on

This webinar aired originally on Tuesday, May 15, 2012. It is part of Data Blueprint’s ongoing webinar series on data management with Dr. Peter Aiken.

Sign up for future sessions at http://www.datablueprint.com/webinar-schedule.

Abstract
Our presentation provides you with an overview of the organizational data security management requirements that are necessary to meet industry benchmarks. Participants will understand the requirements for planning, developing, and executing security policies and procedures to provide proper authentication, authorization, access, and auditing of data and information assets. By the end of our session, you will understand how effective data security policies and procedures ensure that the right people can use and update data in the right way, as well as the importance of restricting inappropriate access.

Published in: Technology, Business
0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
2,315
On SlideShare
0
From Embeds
0
Number of Embeds
1,083
Actions
Shares
0
Downloads
106
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • \n
  • Data-Ed Online: How Safe is Your Data? Data Security Webinar

    1. 1. Welcome! TITLE How Safe is Your Data? Data Security Management Webinar Date: May 15, 2012 Time: 2:00 PM ET Presenter: Dr. Peter Aiken Twitter: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 1© Copyright this and previous years by Data Blueprint - all rights reserved!
    2. 2. New Feature: Live Twitter Feed TITLE Join the conversation on Twitter! Follow us @datablueprint and @paiken Ask questions and submit your comments: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 2© Copyright this and previous years by Data Blueprint - all rights reserved!
    3. 3. New Feature: LIKE US on Facebook TITLE www.facebook.com/datablueprint Post questions and comments Find industry news, insightful content and event updates PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 3© Copyright this and previous years by Data Blueprint - all rights reserved!
    4. 4. TITLE Meet Your Presenter: Dr. Peter Aiken • Internationally recognized thought-leader in the data management field with more than 30 years of experience • Recipient of the 2010 International Stevens Award • Founding Director of Data Blueprint (http://datablueprint.com) • Associate Professor of Information Systems at Virginia Commonwealth University (http://vcu.edu) • President of DAMA International (http://dama.org) • DoD Computer Scientist, Reverse Engineering Program Manager/ Office of the Chief Information Officer • Visiting Scientist, Software Engineering Institute/Carnegie Mellon University • 7 books and dozens of articles • Experienced w/ 500+ data management practices in 20 countries #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 4© Copyright this and previous years by Data Blueprint - all rights reserved!
    5. 5. How Safe Is Your Data? Dr. Peter Aiken: Data Security Management WebinarDATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 4/10/2012
    6. 6. How Safe Is Your Data? Dr. Peter Aiken: Data Security Management WebinarDATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 4/10/2012
    7. 7. How Safe Is Your Data? Dr. Peter Aiken: Data Security Management WebinarDATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 4/10/2012
    8. 8. How Safe Is Your Data? Dr. Peter Aiken: Data Security Management WebinarDATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 4/10/2012
    9. 9. How Safe Is Your Data? Dr. Peter Aiken: Data Security Management WebinarDATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 4/10/2012
    10. 10. TITLE Outline Tweeting now: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    11. 11. TITLE Outline 1. Data Management Overview Tweeting now: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    12. 12. TITLE Outline 1. Data Management Overview 2. What is data security management? Tweeting now: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    13. 13. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches Tweeting now: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    14. 14. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks Tweeting now: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    15. 15. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples Tweeting now: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    16. 16. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    17. 17. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    18. 18. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 6© Copyright this and previous years by Data Blueprint - all rights reserved!
    19. 19. TITLE The DAMA Guide to the Data Management Body of Knowledge Data Management Functions PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 7© Copyright this and previous years by Data Blueprint - all rights reserved!
    20. 20. TITLE The DAMA Guide to the Data Management Body of Knowledge Published by DAMA International Data Management Functions PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 7© Copyright this and previous years by Data Blueprint - all rights reserved!
    21. 21. TITLE The DAMA Guide to the Data Management Body of Knowledge Published by DAMA International • The professional association for Data Managers (40 chapters worldwide) Data Management Functions PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 7© Copyright this and previous years by Data Blueprint - all rights reserved!
    22. 22. TITLE The DAMA Guide to the Data Management Body of Knowledge Published by DAMA International • The professional association for Data Managers (40 chapters worldwide) DMBoK organized around Data Management Functions PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 7© Copyright this and previous years by Data Blueprint - all rights reserved!
    23. 23. TITLE The DAMA Guide to the Data Management Body of Knowledge Published by DAMA International • The professional association for Data Managers (40 chapters worldwide) DMBoK organized around • Primary data management functions focused around data delivery to the organization Data Management Functions PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 7© Copyright this and previous years by Data Blueprint - all rights reserved!
    24. 24. TITLE The DAMA Guide to the Data Management Body of Knowledge Published by DAMA International • The professional association for Data Managers (40 chapters worldwide) DMBoK organized around • Primary data management functions focused around data delivery to the organization • Organized around several environmental elements Data Management Functions PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 7© Copyright this and previous years by Data Blueprint - all rights reserved!
    25. 25. TITLE The DAMA Guide to the Data Management Body of Knowledge Published by DAMA International • The professional association for Data Managers (40 chapters worldwide) DMBoK organized around • Primary data management functions focused around data delivery to the organization • Organized around several environmental elements Data Management Functions PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 7© Copyright this and previous years by Data Blueprint - all rights reserved!
    26. 26. TITLE The DAMA Guide to the Data Management Body of Knowledge PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 8© Copyright this and previous years by Data Blueprint - all rights reserved!
    27. 27. TITLE The DAMA Guide to the Data Management Body of Knowledge Environmental Elements PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 8© Copyright this and previous years by Data Blueprint - all rights reserved!
    28. 28. TITLE The DAMA Guide to the Data Management Body of Knowledge Amazon: http:// www.amazon.com/ DAMA-Guide- Management- Knowledge-DAMA- DMBOK/dp/ 0977140083 Or enter the terms "dama dm bok" at the Amazon search engine Environmental Elements PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 8© Copyright this and previous years by Data Blueprint - all rights reserved!
    29. 29. TITLE What is the CDMP? • Certified Data Management Professional • DAMA International and ICCP • Membership in a distinct group made up of your fellow professionals • Recognition for your specialized knowledge in a choice of 17 specialty areas • Series of 3 exams • For more information, please visit: – http://www.dama.org/i4a/pages/ index.cfm?pageid=3399 – http://iccp.org/certification/ designations/cdmp #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 9© Copyright this and previous years by Data Blueprint - all rights reserved!
    30. 30. TITLE Data Management #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 10© Copyright this and previous years by Data Blueprint - all rights reserved!
    31. 31. TITLE Data Management Data Program Coordination Organizational Data Integration Data Stewardship Data Development Data Support Operations #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 11© Copyright this and previous years by Data Blueprint - all rights reserved!
    32. 32. TITLE Data Management Manage data coherently. Data Program Coordination Organizational Data Integration Data Stewardship Data Development Data Support Operations #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 11© Copyright this and previous years by Data Blueprint - all rights reserved!
    33. 33. TITLE Data Management Manage data coherently. Data Program Coordination Share data across boundaries. Organizational Data Integration Data Stewardship Data Development Data Support Operations #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 11© Copyright this and previous years by Data Blueprint - all rights reserved!
    34. 34. TITLE Data Management Manage data coherently. Data Program Coordination Share data across boundaries. Organizational Data Integration Data Stewardship Data Development Assign responsibilities for data. Data Support Operations #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 11© Copyright this and previous years by Data Blueprint - all rights reserved!
    35. 35. TITLE Data Management Manage data coherently. Data Program Coordination Share data across boundaries. Organizational Data Integration Data Stewardship Data Development Assign responsibilities for data. Engineer data delivery systems. Data Support Operations #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 11© Copyright this and previous years by Data Blueprint - all rights reserved!
    36. 36. TITLE Data Management Manage data coherently. Data Program Coordination Share data across boundaries. Organizational Data Integration Data Stewardship Data Development Assign responsibilities for data. Engineer data delivery systems. Data Support Operations Maintain data availability. #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 11© Copyright this and previous years by Data Blueprint - all rights reserved!
    37. 37. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 12© Copyright this and previous years by Data Blueprint - all rights reserved!
    38. 38. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 12© Copyright this and previous years by Data Blueprint - all rights reserved!
    39. 39. TITLE Summary: Data Security Management #dataed from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 13© Copyright this and previous years by Data Blueprint - all rights reserved!
    40. 40. TITLE Definition: Data Security Management Planning, development and execution of security policies and procedures to provide proper authentication, authorization, access and auditing of data and information assets. #dataed from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 14© Copyright this and previous years by Data Blueprint - all rights reserved!
    41. 41. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 15© Copyright this and previous years by Data Blueprint - all rights reserved!
    42. 42. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 15© Copyright this and previous years by Data Blueprint - all rights reserved!
    43. 43. TITLE Top Data Security Concerns #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 16© Copyright this and previous years by Data Blueprint - all rights reserved!
    44. 44. TITLE Top Data Security Concerns 1. Confidentiality – Making sure that data is supposed to be restricted to the company #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 16© Copyright this and previous years by Data Blueprint - all rights reserved!
    45. 45. TITLE Top Data Security Concerns 1. Confidentiality – Making sure that data is supposed to be restricted to the company 2. Integrity – Ensure that the are no changes to data except those intentional ones #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 16© Copyright this and previous years by Data Blueprint - all rights reserved!
    46. 46. TITLE Top Data Security Concerns 1. Confidentiality – Making sure that data is supposed to be restricted to the company 2. Integrity – Ensure that the are no changes to data except those intentional ones 3. Availability – Ability to get data when it is needed #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 16© Copyright this and previous years by Data Blueprint - all rights reserved!
    47. 47. TITLE Top Data Security Concerns 1. Confidentiality – Making sure that data is supposed to be restricted to the company 2. Integrity – Ensure that the are no changes to data except those intentional ones 3. Availability – Ability to get data when it is needed 4. Non-repudiation – Ability to prove what was sent, when, who sent it as well as what was delivered, when it was delivered and who received it #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 16© Copyright this and previous years by Data Blueprint - all rights reserved!
    48. 48. TITLE Data Security Requirements Requirements and the procedures to meet them are categorized into 4 basic groups (the 4 As): #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 17© Copyright this and previous years by Data Blueprint - all rights reserved!
    49. 49. TITLE Data Security Requirements Requirements and the procedures to meet them are categorized into 4 basic groups (the 4 As): 1. Authentication Validate users are who they say they are #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 17© Copyright this and previous years by Data Blueprint - all rights reserved!
    50. 50. TITLE Data Security Requirements Requirements and the procedures to meet them are categorized into 4 basic groups (the 4 As): 1. Authentication Validate users are who they say they are 2. Authorization Identify the right individuals and grant them the right privileges to specific, appropriate views of data #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 17© Copyright this and previous years by Data Blueprint - all rights reserved!
    51. 51. TITLE Data Security Requirements Requirements and the procedures to meet them are categorized into 4 basic groups (the 4 As): 1. Authentication Validate users are who they say they are 2. Authorization Identify the right individuals and grant them the right privileges to specific, appropriate views of data 3. Access Enable these individuals and their privileges in a timely manner #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 17© Copyright this and previous years by Data Blueprint - all rights reserved!
    52. 52. TITLE Data Security Requirements Requirements and the procedures to meet them are categorized into 4 basic groups (the 4 As): 1. Authentication Validate users are who they say they are 2. Authorization Identify the right individuals and grant them the right privileges to specific, appropriate views of data 3. Access Enable these individuals and their privileges in a timely manner 4. Audit Review security actions and user activity to ensure compliance with regulations and conformance with policy and standards #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 17© Copyright this and previous years by Data Blueprint - all rights reserved!
    53. 53. TITLE Data Security in the News 6 Worst Data Breaches of 2011 1. Sony – Attacks compromised Sony PlayStation Network, Sony Online Entertainment, and Sony Pictures – Failure to protect 100+ user records – On-going customer relations fallout and class-action lawsuits – Recovery costs: $2+ million 2. Epsilon – Cloud-based email service provider fell victim to spear- phishing attack – Breach affected data from 75 clients who trusted Epsilon with their customers’ data – 60 million customer email addresses were breached (conservative estimate) – Largest security breach ever Source: http://www.informationweek.com/news/security/attacks/232301079?itc=edit_in_body_cross PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 18© Copyright this and previous years by Data Blueprint - all rights reserved!
    54. 54. TITLE Data Security in the News, cont’d 6 Worst Data Breaches of 2011 3. RSA – Didn’t involve consumer information but one of the world’s most-used 2-factor authentication system – Failure to detail exactly what had been stolen by low-tech spear phishing attack – Result of this attack: Many companies retooled security and training processes to help prevent these low-cost, easy-to-execute social- engineering attacks 4. Sutter Physician Services – Thief stole desktop containing 2.2 million patients’ medical details – Security lapse on 2 levels: • (1)Data (unencrypted) • (2)Physical location (unsecured) – Failure to alert affected patients in timely manner – Class action lawsuit Source: http://www.informationweek.com/news/security/attacks/232301079?itc=edit_in_body_cross PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 19© Copyright this and previous years by Data Blueprint - all rights reserved!
    55. 55. TITLE Data Security in the News, cont’d 6 Worst Data Breaches of 2011 5. Tricare and SAIC – Backup tapes containing unencrypted data were stolen from an employee’s personal car – 5.1 million people affected: Current and retired members of armed services and their families – Significant because victims are at risk of medical identify theft AND financial identity theft – $4.9 billion lawsuit 6. Nasdaq – Attack on Directors Desk, a cloud-based Nasdaq system designed to facilitate boardroom-level communications for 10,000 senior executives and company directors – Possible access to inside information that might have been sold to competitors or used to make beneficial stock market Source: http://www.informationweek.com/news/security/attacks/232301079?itc=edit_in_body_cross PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 20© Copyright this and previous years by Data Blueprint - all rights reserved!
    56. 56. TITLE Cost of NOT having Accurate Security: Other Examples • 2008: Heartland Payment • 2006: Department of VA Systems – Stolen laptop exposed records – 130 million credit card numbers on 26.5 million veterans, including SSNs – $140 million recovery costs – $14 million recovery costs • 2008: Hannaford Bros. – 4.2 million credit and debit card • 2005: Card Systems numbers Solutions – Class action lawsuit – 40 million credit and debit card accounts • 2007: TJ X Co. – 45 + million credit and debit card numbers stolen – $250+ million recovery cost #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 21© Copyright this and previous years by Data Blueprint - all rights reserved!
    57. 57. TITLE Polling Question #1 What is the cost of data security? Estimated cost per individual breach: 1. $194 2. $467 3. $855 4. $1026 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 22© Copyright this and previous years by Data Blueprint - all rights reserved!
    58. 58. TITLE Data Security Statistics (2011) Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 23© Copyright this and previous years by Data Blueprint - all rights reserved!
    59. 59. TITLE Data Security Statistics (2011) • Cost of individual data breach is decreasing for the first time in 7 years Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 23© Copyright this and previous years by Data Blueprint - all rights reserved!
    60. 60. TITLE Data Security Statistics (2011) • Cost of individual data breach is decreasing for the first time in 7 years • Cost of individual data breach: – $5.5 million (2011) vs. $7.2 million (2010) Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 23© Copyright this and previous years by Data Blueprint - all rights reserved!
    61. 61. TITLE Data Security Statistics (2011) • Cost of individual data breach is decreasing for the first time in 7 years • Cost of individual data breach: – $5.5 million (2011) vs. $7.2 million (2010) • Cost per compromised record: – $194 (2011) from $215 (2010) – Exception: Breach as a result of malicious attacks average $222 per record (higher because companies need to do more after the fact) Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 23© Copyright this and previous years by Data Blueprint - all rights reserved!
    62. 62. TITLE Data Security Statistics (2011) • Cost of individual data breach is decreasing for the first time in 7 years • Cost of individual data breach: – $5.5 million (2011) vs. $7.2 million (2010) • Cost per compromised record: – $194 (2011) from $215 (2010) – Exception: Breach as a result of malicious attacks average $222 per record (higher because companies need to do more after the fact) • Costs are generally lower if organizations have Chief Information Security Officer (CISO) Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 23© Copyright this and previous years by Data Blueprint - all rights reserved!
    63. 63. TITLE Data Security Statistics (2011) • Cost of individual data breach is decreasing for the first time in 7 years • Cost of individual data breach: – $5.5 million (2011) vs. $7.2 million (2010) • Cost per compromised record: – $194 (2011) from $215 (2010) – Exception: Breach as a result of malicious attacks average $222 per record (higher because companies need to do more after the fact) • Costs are generally lower if organizations have Chief Information Security Officer (CISO) • Other declines in 2011: – Average size of data breaches declined by 16% – Abnormal customer churn decreased by 18% Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 23© Copyright this and previous years by Data Blueprint - all rights reserved!
    64. 64. TITLE Data Security Statistics (2011) • Cost of individual data breach is decreasing for the first time in 7 years • Cost of individual data breach: – $5.5 million (2011) vs. $7.2 million (2010) • Cost per compromised record: – $194 (2011) from $215 (2010) – Exception: Breach as a result of malicious attacks average $222 per record (higher because companies need to do more after the fact) • Costs are generally lower if organizations have Chief Information Security Officer (CISO) • Other declines in 2011: – Average size of data breaches declined by 16% – Abnormal customer churn decreased by 18% • Interesting fact: in 2011 39% of data breaches were caused by negligent insiders and 24% by system glitches Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 23© Copyright this and previous years by Data Blueprint - all rights reserved!
    65. 65. TITLE Data Security Statistics (2011) Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 24© Copyright this and previous years by Data Blueprint - all rights reserved!
    66. 66. TITLE Data Security Statistics (2011) • Breaches caused by malicious attacks increased: 37% (2011) from 31% (2010) – 50% malware – 33% malicious insiders – 28% device theft – 28% SQL injection – 22% phishing attacks – 17% social engineering attacks Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 24© Copyright this and previous years by Data Blueprint - all rights reserved!
    67. 67. TITLE Data Security Statistics (2011) • Breaches caused by malicious attacks increased: 37% (2011) from 31% (2010) – 50% malware – 33% malicious insiders – 28% device theft – 28% SQL injection – 22% phishing attacks – 17% social engineering attacks • Businesses’ detection costs decreased by 6%: $428,330 (2011) from $455,670 (2010) – Companies are more efficient in investigating breaches and organizing around response plans Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 24© Copyright this and previous years by Data Blueprint - all rights reserved!
    68. 68. TITLE Data Security Statistics (2011) • Breaches caused by malicious attacks increased: 37% (2011) from 31% (2010) – 50% malware – 33% malicious insiders – 28% device theft – 28% SQL injection – 22% phishing attacks – 17% social engineering attacks • Businesses’ detection costs decreased by 6%: $428,330 (2011) from $455,670 (2010) – Companies are more efficient in investigating breaches and organizing around response plans • Notification costs increased by 10% $561,495 (2011) – Failure to accurately determine # of individuals affected can result in notifying more people than necessary, which leads to higher churn and other cost- increasing factors – Balance of being timely and accurate at the same time Source: http://www.informationweek.com/news/security/attacks/232602891 PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 24© Copyright this and previous years by Data Blueprint - all rights reserved!
    69. 69. TITLE Other Costs Related to Data Security Breaches #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 25© Copyright this and previous years by Data Blueprint - all rights reserved!
    70. 70. TITLE Other Costs Related to Data Security Breaches • Customer churn (replacing lost customers with new ones) #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 25© Copyright this and previous years by Data Blueprint - all rights reserved!
    71. 71. TITLE Other Costs Related to Data Security Breaches • Customer churn (replacing lost customers with new ones) • Value of stolen data #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 25© Copyright this and previous years by Data Blueprint - all rights reserved!
    72. 72. TITLE Other Costs Related to Data Security Breaches • Customer churn (replacing lost customers with new ones) • Value of stolen data • Cost of protecting affected victims #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 25© Copyright this and previous years by Data Blueprint - all rights reserved!
    73. 73. TITLE Other Costs Related to Data Security Breaches • Customer churn (replacing lost customers with new ones) • Value of stolen data • Cost of protecting affected victims • Cost of remedial security measures #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 25© Copyright this and previous years by Data Blueprint - all rights reserved!
    74. 74. TITLE Other Costs Related to Data Security Breaches • Customer churn (replacing lost customers with new ones) • Value of stolen data • Cost of protecting affected victims • Cost of remedial security measures • Fines/Lawsuits #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 25© Copyright this and previous years by Data Blueprint - all rights reserved!
    75. 75. TITLE Other Costs Related to Data Security Breaches • Customer churn (replacing lost customers with new ones) • Value of stolen data • Cost of protecting affected victims • Cost of remedial security measures • Fines/Lawsuits • Loss of good will and reputation #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 25© Copyright this and previous years by Data Blueprint - all rights reserved!
    76. 76. TITLE Other Examples of Security Breaches Organization Type of Security Breach Medical Records thrown in trash Boulder Hospital exposing 14 patients 1,000 patients radiology studies data Griffin Hospital stolen Stolen backup tapes expose unknown Proxima Alfa Investments number of clients’ names, addresses, LLC SSNs, bank and tax numbers and copies of passports Data of 3,300,000 names, addresses, Educational Credit DoB and SSNs exposed on stolen Management Corporation portable media device Northwestern Memorial 250 patients’ files stolen from unlocked Hospital cabinets by cleaning crew Source: http://dataloss.db.org/; David Schlesinger PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 26© Copyright this and previous years by Data Blueprint - all rights reserved!
    77. 77. TITLE Other Examples, cont’d Organization Type of Security Breach Evergreen, Vancouver, 5,000 employee’s information, including Washington Schools back account information, SSNs and Information Cooperative birth dates are compromised Names, addresses and SSNs of 11,000 Connecticut Office of Policy rebate applications are stolen and Management Stolen laptop exposes 9,500 clients’ Thrivent Financial for names, addresses, SSNs and health Lutherans information Data of 100 million gamers exposed when hackers broke into PC games Sony Online Entertainment network, including names, addresses, user names, passwords, credit card information Source: http://dataloss.db.org/; David Schlesinger PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 27© Copyright this and previous years by Data Blueprint - all rights reserved!
    78. 78. TITLE Polling Question #2 How much time should be committed to data security? 1. 1 day per week 2. Ongoing activity 3. 1 hour per day 4. 1 hour per month PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 28© Copyright this and previous years by Data Blueprint - all rights reserved!
    79. 79. TITLE And in this corner we have Dave! PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 29© Copyright this and previous years by Data Blueprint - all rights reserved!
    80. 80. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 30© Copyright this and previous years by Data Blueprint - all rights reserved!
    81. 81. TITLE Outline 1. Data Management Overview 2. What is data security management? 3. Why is data security important? (1) Top Data Security Concerns & Requirements (2) The Cost of Not Having Accurate Security (3) Data Security Statistics & Examples of Security Breaches 4. Data Security Management Building Blocks 5. Passwords & Policy Examples 6. Data Security Standards & Guiding Principles Tweeting now: 7. Take Aways, References & Q&A #dataed PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 30© Copyright this and previous years by Data Blueprint - all rights reserved!
    82. 82. TITLE Data Security Management Overview                             #dataed Illustration from The DAMA Guide to the Data Management Body of Knowledge p. 37 © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 31©36 Copyright this and previous years by Data Blueprint - all rights reserved!
    83. 83. TITLE Data Security Management Overview                             #dataed Illustration from The DAMA Guide to the Data Management Body of Knowledge p. 37 © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 31©36 Copyright this and previous years by Data Blueprint - all rights reserved!
    84. 84. TITLE Goals and Principles from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 32© Copyright this and previous years by Data Blueprint - all rights reserved!
    85. 85. TITLE Goals and Principles 1. Enable appropriate, and prevent inappropriate access and change to data assets from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 32© Copyright this and previous years by Data Blueprint - all rights reserved!
    86. 86. TITLE Goals and Principles 1. Enable appropriate, and prevent inappropriate access and change to data assets 2. Meet regulatory requirements for privacy and confidentiality from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 32© Copyright this and previous years by Data Blueprint - all rights reserved!
    87. 87. TITLE Goals and Principles 1. Enable appropriate, and prevent inappropriate access and change to data assets 2. Meet regulatory requirements for privacy and confidentiality 3. Endure the privacy and confidentiality needs of all stakeholders are met from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 32© Copyright this and previous years by Data Blueprint - all rights reserved!
    88. 88. TITLE Potentially Competing Concerns #dataed from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 33© Copyright this and previous years by Data Blueprint - all rights reserved!
    89. 89. TITLE Potentially Competing Concerns 1. Stakeholder Concerns • Clients, patients, students, citizens, suppliers, partners #dataed from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 33© Copyright this and previous years by Data Blueprint - all rights reserved!
    90. 90. TITLE Potentially Competing Concerns 1. Stakeholder Concerns • Clients, patients, students, citizens, suppliers, partners 2. Government Regulations • Restricting access to information • Openness, transparency and accountability #dataed from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 33© Copyright this and previous years by Data Blueprint - all rights reserved!
    91. 91. TITLE Potentially Competing Concerns 1. Stakeholder Concerns • Clients, patients, students, citizens, suppliers, partners 2. Government Regulations • Restricting access to information • Openness, transparency and accountability 3. Proprietary Business Concerns • Competitive advantage, IP, intimate knowledge of customer needs/relationships #dataed from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 33© Copyright this and previous years by Data Blueprint - all rights reserved!
    92. 92. TITLE Potentially Competing Concerns 1. Stakeholder Concerns • Clients, patients, students, citizens, suppliers, partners 2. Government Regulations • Restricting access to information • Openness, transparency and accountability 3. Proprietary Business Concerns • Competitive advantage, IP, intimate knowledge of customer needs/relationships 4. Legitimate Access Needs • Strategy, rules, processes #dataed from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 33© Copyright this and previous years by Data Blueprint - all rights reserved!
    93. 93. TITLE Data Security Activities from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 34© Copyright this and previous years by Data Blueprint - all rights reserved!
    94. 94. TITLE Data Security Activities • Understand Data Security Needs and Regulatory Requirements from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 34© Copyright this and previous years by Data Blueprint - all rights reserved!
    95. 95. TITLE Data Security Activities • Understand Data Security Needs and Regulatory Requirements – Business requirements from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 34© Copyright this and previous years by Data Blueprint - all rights reserved!
    96. 96. TITLE Data Security Activities • Understand Data Security Needs and Regulatory Requirements – Business requirements – Regulatory requirements from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 34© Copyright this and previous years by Data Blueprint - all rights reserved!
    97. 97. TITLE Data Security Activities • Understand Data Security Needs and Regulatory Requirements – Business requirements – Regulatory requirements • Define Data Security Policy from The DAMA Guide to the Data Management Body of Knowledge © 2009 by DAMA International PRODUCED BY CLASSIFICATION DATE SLIDE DATA BLUEPRINT 10124-C W. BROAD ST, GLEN ALLEN, VA 23060 EDUCATION 5/15/2012 34© Copyright this and previous years by Data Blueprint - all rights reserved!

    ×