Impact of a Data Classification

The “Internal Use Only” data classification is necessary security measure to protect our company’s data against unauthorized use, access, modification, and deletion. There are seven domains typically found in an IT infrastructure. They are User Domain, Workstation Domain, LAN Domain, LAN-to-WAN Domain, Remote Access Domain, WAN Domain, and System/Application Domain. Out of these seven Domains the “Internal Use Only” data classification will include the User Domain, the Work Station Domain, and the LAN Domain. The User Domain is usually the weakest and most susceptible to tampering whether it is from a malicious employee or an untrained or careless user people or human and humans make mistakes. This domain is where personal information is created and internal documents are opened and modified. The User Domain can be modified to only allow access to specific company data. The Workstation Domain encompasses is where all the users work. We have a very secure access requirement in order for someone to log onto a workstation; they must provide a specific user name and password and the password is required to change every 60 days. We also push out regular updates weekly to all workstations to make sure antivirus and applications are all up to date. The LAN Domain is the group of computers along with all the switches, routers, servers, firewalls, and cables that incorporate the network. This domain can access systems Company wide from anywhere on the LAN Domain which is why we need very strong security on this domain. The building will have specific badge access and data closets and server rooms will have badge and fingerprint access to prevent any unauthorized entry.