CISSP - Data Handling Requirements Labeling Storage and Sanitization
Watch on YouTube CISSP Domain 2 asset handling requirements explained: labeling standards, encryption at rest (AES-256), encryption in transit (TLS 1.3), NIST SP 800-88 sanitization methods (Clear/Purge/Destroy), and data remanence risks in SSDs and cloud environments. Includes the exam trap: standard file deletion is NOT sanitization. Watch the next video: CISSP 2.3 - Provisioning Resources Securely.
▶ Watch next: CISSP - Secure Provisioning CIS Benchmarks Golden Images and Capital One [2.3] https://www.youtube.com/watch?v=8hbLYtutH4g
Chapters
- 0:00 Handling Requirements -- Classification in Action
- 2:26 Labeling and Marking Standards
- 5:04 Storage Requirements -- Encryption at Rest
- 7:41 Transmission Requirements -- Encryption in Transit
- 10:30 Disposal and Sanitization -- NIST SP 800-88
- 13:14 Data Remanence -- The Invisible Risk
- 16:14 Handling Framework Wrap-Up and Exam Focus
- 18:18 Quiz Time
CISSP Domain 2 asset handling requirements explained: labeling standards, encryption at rest (AES-256), encryption in transit (TLS 1.
Key Topics
- Handling Requirements -- Classification in Action
- Labeling and Marking Standards
- Storage Requirements -- Encryption at Rest
- Transmission Requirements -- Encryption in Transit
- Disposal and Sanitization -- NIST SP 800-88
- Data Remanence -- The Invisible Risk
- Handling Framework Wrap-Up and Exam Focus