Assessing And Reducing Information Exposure
Click here to download now
Overview: With companies of all sizes increasingly dependent upon information to enable their business, protecting critical data has never been a higher priority. After all, the risk of a data breach is real; in 2008, 285 million electronic records were breached—which is more than the previous four years combined. Data breaches are also expensive, with the average cost estimated at $6.7 million, or $202 per consumer record. Yet, identifying and addressing priority data loss and data exposure concerns can be difficult. Information exposure assessment is a collaborative process that requires organizations to answer several key, foundational questions. For example: Where is the company’s critical and sensitive information, who is using it, and how vulnerable is it to breach? Where is this information being stored, is it classified appropriately, what data retention policies apply to it, and what controls are in place to protect it? What critical and sensitive information is exposed to threats, which threats represent the greatest risk to the organization, and how should information be protected against these threats? As organizations answer these questions, they will gain invaluable insight and visibility into their current information exposure risks and can begin to proactively manage that risk in a coordinated approach.