Action needed to prevent information classification muddle, report says


Action needed to prevent information classification muddle, report says

Ian Grant

Chief information officers need to take a leading role in setting up formal schemes to stop them over-complicating information classification to comply with security regulations, according to a report from the Information Security Forum (ISF).

The ISF said that information classification systems were too complex. "As a result they rarely deliver business benefits and are often simply ignored," it said.

Good information classification prevents over-complicating controls and cuts the costs and resources needed to protect information, said the report.

The ISF said participation was essential from human resources, legal, IT and audit, along with board support. "Having senior managers with a shared strategic vision and understanding of information classification and the value it can deliver is critical to overcome budgetary and organisational issues. It is also vital to run a successful pilot project to show a 'quick win' to demonstrate the benefits," said Nick Frost at the ISF who wrote the report.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy