richardk/iso27diy-corp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
iso27diy-corp/Corpus/Sparks/Assets.md

2.6 KiB
Raw Blame History

See also:

  • slide decks made for workshop sessions. Those for Kaliber, Nedap and Networking4AL are the most recent.

An "information asset" refers to a valuable and meaningful piece of information that an organization or individual possesses, uses, or relies upon to achieve their objectives. Information assets can take various forms, including data, documents, intellectual property, proprietary knowledge, and more. They are considered valuable resources that contribute to decision-making, operational efficiency, innovation, and overall business success. Here are a few definitions of "information asset":

  1. ISO/IEC 27000:2018 (Information Security Management Systems - Overview and Vocabulary): "Information asset: Anything that has value to an organization (e.g. printed documents, electronic documents, intellectual property, personal data, knowledge of processes, physical items)."

  2. NIST Special Publication 800-53 (Security and Privacy Controls for Federal Information Systems and Organizations): "Information asset: Information and the information systems that process, store, and transmit that information."

  3. The Data Management Body of Knowledge (DAMA-DMBOK): "Information asset: A resource of value that an organization uses to understand, operate, and innovate."

  4. The University of Texas at Austin - Information Security Office: "Information asset: Any knowledge that has potential value to an organization or an individual, including but not limited to business data, personal data, research data, proprietary data, and internal and external communications."

  5. Gartner IT Glossary: "Information asset: A collection of information that is defined and managed as a standalone entity and is considered of value."

In essence, an information asset is a piece of information that holds value and significance, whether for its role in decision-making, competitive advantage, regulatory compliance, research, or other organizational functions. Proper management, protection, and utilization of information assets are crucial to an organization's success and security.

Related: