CLIP THIS INQUIRY

Select a group:

Group Name
Create New GroupClip

CLIP THIS FLOW

Select a group:

Group Name
Create New GroupClip
This is the Policy And Procedures report in The Data Security And Privacy Playbook.

For Security & Risk Professionals

Know Your Data To Create Actionable Policy

January 15, 2013

By Heidi Shey, John Kindervag with Stephanie Balaouras, Kelley Mak

  • 285 downloads
  • 0 comments
  • Rating:

Why Read This Report

Data defense is the fundamental purpose of information security. To defend your data, there are only four levers you can pull — controlling access, inspecting data usage patterns for abuse, disposing of data when the organization no longer needs it, or killing data to devalue it in the event that it is stolen. Policy addresses when and how much to pull the levers. Too often, organizations create data policies without a clear understanding of feasibility and purpose within their business because they themselves are in the dark about their data — from what data they have to where it resides. As a result, many data security policies are ineffective and can even hinder business processes. Data classification via traditional frameworks such as Bell-LaPadula and Biba can be too academic in nature and not enforceable in the modern world of big data and advanced threats. In today's evolving data economy, data identity is the missing link that security and risk (S&R) leaders must define in order to create actionable data security and control policy. We designed this report to help S&R leaders develop effective policies using our Data Security Control And Control Framework as a guideline.
Tags: Identity & Access Management, Information Leak Prevention, Information Protection, Infrastructure Security, IT Infrastructure & Operations, Network Access Control, Network Management, Network Security, Networking, Privacy, Regulations & Legislation, Security Operations, Security Standards, Regulations & Legislation, Security, Risk and Compliance, Technology
US $ 499
Become A Client

Get objective, pragmatic guidance that helps you make tough decisions and succeed in a complex world. Contact us to learn more.

Already A Client?
Log in to read this document.

TABLE OF CONTENTS

  • Data Security Policies Today Have More Bark Than Bite
  • Get Some Policy Teeth With The Data Security And Control Framework
  • Chief Data Officers Will Drive Data Security Policy Initiatives

  • WHAT IT MEANS

    Create Actionable Policies Today By Knowing Your Data
  • Supplemental Material
  • Related Research Documents
 
Loading...

Browse

About Forrester

Forrester Research, Inc. is an independent research company that provides pragmatic and forward-thinking advice to global leaders in business and technology.

Roles We Serve

Forrester supports leaders in 13 roles across three distinct client segments: Business Technology, Marketing & Strategy, and Technology Industry.

Analysts & Coverage Areas

Aligned to your professional role, Forrester's analysts are experts in the specific technologies, issues, and trends currently impacting your business.

Research
Latest Reports
Playbooks
Charts & Figures
Forrester Waves
Planned Research
Data
Consumer Data
Business Data
Events
Forums
Webinars
Workshops
Tools & Templates
Vendor Selection Aids
Best Practice & Self-Assessments
Models & Calculators
Document Templates

Forrester Leadership Boards

Fresh thinking and collaborative problem-solving through an unmatched combination of peer networking, forward-looking analysis, and professional guidance.

Consulting

Our expert analysts provide custom research-based frameworks to guide you through each phase of your critical business initiatives from identifying opportunity to optimizing results.

Community

Connect with peers and analysts, share your views, and ask questions on key business issues.

Blog

Forrester analysts weigh in on the latest business and technology news.

  • BROWSE
  • Register
  • Call +1 617.613.5730
  • Cart