CobiT definition:
Effective data management requires identifying data requirements. The data management process also includes the establishment of effective procedures to manage the media library, backup and recovery of data, and proper disposal of media. Effective data management helps ensure the quality, timeliness and availability of business data.
Control over the IT process of
Manage data
that satisfies the business requirement for IT of
optimising the use of information and ensuring that information is available as required
by focusing on
maintaining the completeness, accuracy, availability and protection of data
is achieved by
- Backing up data and testing restoration
- Managing onsite and offsite storage of data
- Securely disposing of data and equipment
and is measured by
- Percent of user satisfaction with availability of data
- Percent of successful data restorations
- Number of incidents where sensitive data were retrieved after media were disposed
Control objectives:
DS11 Manage Data
DS11.1 Business Requirements for Data Management
DS11.2 Storage and Retention Arrangements
DS11.3 Media Library Management System
DS11.4 Disposal
DS11.5 Backup and Restoration
DS11.6 Security Requirements for Data Management
Check out the links for details on the control objectives.
No related posts.