Your organization is handling sensitive government contracts and must ensure that information related to these projects is guarded against unauthorized physical access. In accordance with data classification policies, which of the following is the BEST way to handle such data?
Enable detailed logging of all access to the data for audit purposes
Encrypt all data and frequently change encryption keys
Store the data in a physically secure location and enforce strict access controls
Institute policies for secure disposal of printouts and storage media containing the data
Storing information with a 'Restricted' classification in a secure, access-controlled environment ensures that only authorized personnel with the necessary clearance or permissions have access to that data. Keep in mind the question is regarding physical access to the data. While encryption, logging, and secure disposal are important for the overall security posture, they do not inherently restrict access to the data to the appropriate individuals.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are access controls and why are they important?
Open an interactive chat with Bash
What does it mean to store data in a physically secure location?
Open an interactive chat with Bash
What are data classification policies and how do they impact data handling?