Data Security Lesson

Post date: Aug 14, 2014 1:58:23 PM

Gave yesterday a lesson about information security, including topics:

- Layered Security (Defense in depth)

- Minimize amount of leak

- Data limited retention policy

- Data Security

- Confidentity

- Security Audits

- Configuration Audits

- Data Leak Prevention

- Data Encryption (Cryptography)

- Data storage / transport (USB-sticks, temporary paths etc)

- Physical security

- Access control

- Policy of minimum privilege

- User Identification & Authentication

- Addressing and encforcing policy

- Staff awareness and training

- Security review & audits

- Configuration management

- Disaster recoery planning

- Laws & regulations

- Information security culture

- Answering any questions right now, and later by mail