Sample Asset Identification and Classification Standard:: Difference between revisions
No edit summary |
|||
(2 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
== | ==Sample Asset Identification and Classification Standard== | ||
The Asset Identification and Classification Standard define Company objectives for establishing specific standards on the identification, classification, and labeling of Company information assets. | |||
== | ==Objectives== | ||
The Company defines information classifications based on the sensitivity, criticality, confidentiality/privacy requirements, and value of the information. All information assets, whether generated internally or externally, must be categorized into one of these information classifications: Restricted, Confidential, Internal Use Only, or Public. When information of various classifications is combined, the resulting collection of information or new information must be classified at the most restrictive level among the sources. Specific instructions and requirements for classifying information assets are provided in the [[Sample Information Classification Standard:|'''Sample Information Classification Standard''']].<br> | The Company defines information classifications based on the sensitivity, criticality, confidentiality/privacy requirements, and value of the information. All information assets, whether generated internally or externally, must be categorized into one of these information classifications: Restricted, Confidential, Internal Use Only, or Public. When information of various classifications is combined, the resulting collection of information or new information must be classified at the most restrictive level among the sources. Specific instructions and requirements for classifying information assets are provided in the [[Sample Information Classification Standard:|'''Sample Information Classification Standard''']].<br> | ||
<br> | <br> | ||
All Restricted, Confidential, and Internal Use Only information must be labeled or marked with the appropriate information classification designation. Such markings must appear on all manifestations of the information. Specific instructions and requirements for labeling information assets are provided in the [[Sample Information Labeling Standard:|'''Sample Information Labeling Standard''']].<br> | All Restricted, Confidential, and Internal Use Only information must be labeled or marked with the appropriate information classification designation. Such markings must appear on all manifestations of the information. Specific instructions and requirements for labeling information assets are provided in the [[Sample Information Labeling Standard:|'''Sample Information Labeling Standard''']].<br> | ||
<br> | <br> | ||
== | ==Document Examples== | ||
Use these samples as a guide for your policy development. Fully customizable versions are available from [http://policy-machine.com The Policy Machine].<br> | |||
<br> | <br> | ||
:: | <gallery> | ||
:: | Image:Asset Identification and Classification Standard.png|Asset Identification and Classification Standard page one of six. | ||
:: | Image:Asset Identification and Classification Standard(1).png|Asset Identification and Classification Standard page two of six. | ||
Image:Asset Identification and Classification Standard(2).png|Asset Identification and Classification Standard page three of six. | |||
Image:Asset Identification and Classification Standard(3).png|Asset Identification and Classification Standard page four of six. | |||
Image:Asset Identification and Classification Standard(4).png|Asset Identification and Classification Standard page five of six. | |||
Image:Asset Identification and Classification Standard(5).png|Asset Identification and Classification Standard page six of six. | |||
</gallery> |
Latest revision as of 15:20, 13 January 2014
Sample Asset Identification and Classification Standard
The Asset Identification and Classification Standard define Company objectives for establishing specific standards on the identification, classification, and labeling of Company information assets.
Objectives
The Company defines information classifications based on the sensitivity, criticality, confidentiality/privacy requirements, and value of the information. All information assets, whether generated internally or externally, must be categorized into one of these information classifications: Restricted, Confidential, Internal Use Only, or Public. When information of various classifications is combined, the resulting collection of information or new information must be classified at the most restrictive level among the sources. Specific instructions and requirements for classifying information assets are provided in the Sample Information Classification Standard.
All Restricted, Confidential, and Internal Use Only information must be labeled or marked with the appropriate information classification designation. Such markings must appear on all manifestations of the information. Specific instructions and requirements for labeling information assets are provided in the Sample Information Labeling Standard.
Document Examples
Use these samples as a guide for your policy development. Fully customizable versions are available from The Policy Machine.
-
Asset Identification and Classification Standard page one of six.
-
Asset Identification and Classification Standard page two of six.
-
Asset Identification and Classification Standard page three of six.
-
Asset Identification and Classification Standard page four of six.
-
Asset Identification and Classification Standard page five of six.
-
Asset Identification and Classification Standard page six of six.