December 23, 2021 by Admin
Which of the following should be of MOST concern to an information security manager reviewing an organization’s data classification program?
- The program allows exceptions to be granted.
- Labeling is not consistent throughout the organization.
- Data retention requirements are not defined.
- The classifications do not follow industry best practices.