We constantly hear that one of the best ways to protect data is to classify it; the highest classification gets the most security. In the financial industry, the various state and federal regulations require that various types of data be protected in different ways, but how and why gets classified is the challenge. The problem, of course, is who is doing the classification, if indeed it gets done at all.
Does the person who creates the data classify it? Do they even know what they're working on to classify it appropriately? Is it a business line manager who has so much other work to do?
This eBook looks at who determines who classifies the data and who implements the security around classifications.