Summary

This chapter has covered foundational concepts in asset security. In a nutshell, assets need protection from unauthorized or inadvertent disclosure, modification, or destruction. Hence, assets are classified based on factors, such as their value, useful life, and sensitivity, to establish protection requirements. Data privacy is a critical requirement as per laws and regulatory frameworks that are specific to safeguarding personal data. Data retention and data remanence can pose security challenges in protecting the information and were covered.

In the next chapter, Data Loss Prevention (DLP)-related terminologies, concepts, and techniques will be covered.