Classify the following scenario as major or minor non-conformity.
''The organization has a very mature information security policy. Lately, the organization has realized the need to focus on protection of PI. A formal PI identification exercise was done for this purpose and a mapping of PI and security controls was done. The organization has also put in place data masking technology in certain functions where the SPI was accessed by employees of a third party. However, the organization is yet to include PI specifically in its risk assessment exercise, incident management, testing, data classification and security architecture programs.''
Maryln
2 months agoLynelle
2 months agoGlendora
2 months agoAlishia
27 days agoMirta
1 months agoNatalie
1 months agoElly
2 months agoDesmond
2 months agoRemona
2 months agoMarylou
1 months agoLanie
1 months agoNieves
1 months agoPearline
2 months agoBritt
3 months agoDanilo
1 months agoTheola
1 months agoFrancoise
2 months agoEdward
2 months agoLatricia
2 months agoTheodora
2 months agoDarrel
2 months agoSean
3 months agoCarissa
3 months agoRosendo
3 months agoJody
2 months agoTrina
2 months agoDonte
2 months agoIrma
2 months agoElly
3 months ago