💼 Data Security (PR.DS)
- ID:
/frameworks/nist-csf-v1.1/pr-ds
Description​
Information and records (data) are managed consistent with the organization's risk strategy to protect the confidentiality, integrity, and availability of information.
Similar​
- Internal
- ID:
dec-b-67dbc146
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 PR.DS-1: Data-at-rest is protected | 15 | 30 | no data | ||
| 💼 PR.DS-2: Data-in-transit is protected | 16 | 53 | no data | ||
| 💼 PR.DS-3: Assets are formally managed throughout removal, transfers, and disposition | 8 | no data | |||
| 💼 PR.DS-4: Adequate capacity to ensure availability is maintained | no data | ||||
| 💼 PR.DS-5: Protections against data leaks are implemented | 47 | 91 | no data | ||
| 💼 PR.DS-6: Integrity checking mechanisms are used to verify software, firmware, and information integrity | 22 | 27 | no data | ||
| 💼 PR.DS-7: The development and testing environment(s) are separate from the production environment | 1 | no data | |||
| 💼 PR.DS-8: Integrity checking mechanisms are used to verify hardware integrity | no data |