With life being so hectic, we don’t stop to consider the small stuff.
For instance, have you ever wondered about the process it takes to get your tea or coffee to your favorite café or store?
The life-cycle of our coffee or drinks doesn’t really concern us so long as the Caramel Ribbon Crunch Frappuccino is ready, we are happy.
However as financial firms the small stuff can be detrimental.
Let’s talk about the NIST Cybersecurity Framework:
To secure your firm you have to first learn to identify the types of assets that flow through your firm. The best way to classify assets is to do a data mapping.
Data mapping should answer the following questions:
- Who is producing the data?
- Why does your firm have them?
- Where is the data resting or going?
- How long is the data maintain?
- How is it stored?
- What is exactly being collected, i.e., PIIs
- Who has access?
Reach out to us for more information, info@cybsecwatch.com.