Data Encryption & Security
Unless your organization is prepared to simply encrypt all stored data, it is important to look at your data and determine the degrees of sensitivity. Blue River will help you:
Identify the categories of sensitive data...
Different types of data will require differing levels of security to protect the confidentiality, access control, integrity, and non-repudiation characteristics of this data.
Identify applications and systems...
Determine the entities that generate, process, transport, and store sensitive data. It is also important to understand the nature of the data itself, such as whether it is structured or unstructured, as this information will influence the selection of any controls you deploy.
Include the data owners in the process...
An IT or security group is unlikely to clearly understand the implications of data compromise without input and requirements from the data stakeholders.
