In: Computer Science
Respond to the following in a minimum of 175 words:
Organizations need to know the value of their data to find the best way to protect it. The data must be categorized according to the organization’s level of concern for confidentiality, integrity, and availability. The potential impact on assets and operations should be known in case data, systems, and/or networks are compromised (through unauthorized access, use, disclosure, disruption, modification, or destruction).
Choose an organization from the Health Care, Finance, or Education sector to study throughout this course.
Based on your chosen organization, ensure you:
Let us choose an health care organization named World Health Organization(WHO) to discuss the above facts.
Organization's data(Health data and statistics) :- They use a very wide variety of data in order to complete their tasks.
a). Global Health Observatory(GHO) :- WHO's portal providing access to data and analyses for monitoring the global health situation. Provides critical data and analyses for over 30 health themes ranging from health systems to disease-specific themes, as well as direct access to the full database.
b). Global Health Estimates(GHE) :- The GHE provide a comprehensive and comparable assessment of mortality and loss of health due to diseases, injuries and risk factors. Global, regional and country estimates for all-cause mortality, and deaths and disability-adjusted life years (DALYs) by age, sex and cause, are available for download.
c). WHO Mortality Database :- Database of annual death registration data on causes of death by age and sex as reported from civil registration systems of more than 100 Member States.
Now coming to the standards of organization’s categorization of the data based on the Standards for Security Categorization of Federal Information and Information Systems.
a). Confidentiality :- The data used in the organization is all in all a confidential data up to some extent.
b). Integrity :- The data used in the World Health Organization is integrated that is the data is guarded against improper information modification or destruction, and includes ensuring information nonrepudiation and authenticity.
c). Availibility :- Ensuring timely and reliable access to and use of information in the organization.
Hope u liked my answer.