CISSP - Asset Classification and Data Ownership Roles
Watch on YouTube CISSP Domain 2 asset security starts with classification - the master key that determines every downstream control decision. This video covers government vs commercial classification schemes, the 4 data ownership roles (owner, custodian, steward, processor/controller), sensitive data types (PII, PHI, PCI, IP), asset inventory methods, and the Target 2013 breach as a classification failure case study. Watch the next video: CISSP 2.2 - Information and Asset Handling Requirements.
▶ Watch next: CISSP - Data Handling Requirements Labeling Storage and Sanitization [2.2] https://www.youtube.com/watch?v=OQ3firMlAyE
Chapters
- 0:00 Domain 2 Intro -- Classification as the Master Key
- 2:18 Data Classification Levels -- Government vs Commercial
- 4:22 Data Ownership Roles -- Owner, Custodian, Steward
- 6:39 Sensitive Data Types -- PII, PHI, PCI, and IP
- 9:08 Asset Inventory and Discovery
- 11:03 Classification in Action -- The Target Breach
- 13:22 Domain 2 Scene Recap and Exam Focus
- 17:20 Quiz Time
CISSP Domain 2 asset security starts with classification - the master key that determines every downstream control decision. This video covers government vs commercial classification schemes, the 4 data ownership roles (owner,...
Key Topics
- Domain 2 Intro -- Classification as the Master Key
- Data Classification Levels -- Government vs Commercial
- Data Ownership Roles -- Owner, Custodian, Steward
- Sensitive Data Types -- PII, PHI, PCI, and IP
- Asset Inventory and Discovery
- Classification in Action -- The Target Breach
- Domain 2 Scene Recap and Exam Focus