A security administrator is working with the human resources department to classify data held by the company. The administrator has determined the data contains a variety of data types, including health information, employee names and addresses, trade secrets, and confidential customer information.
Which of the following should the security administrator do NEXT?
A . Apply a predefined set of labels from government sources to all data within the company.
B . Create a custom set of data labels to group the data by sensitivity and protection requirements.
C . Label sensitive data according to age to comply with retention policies.
D . Destroy company information that is not labeled in compliance with government
regulations and laws.
Answer: B
Leave a Reply