PRI-05.3: Data Masking | Find Controls

PRI-05.3 · Data Masking

Control Description

Mechanisms exist to mask sensitive/regulated data through data anonymization, pseudonymization, redaction or de-identification.

Control Question

Assessment question for control validation

Does the organization mask sensitive/regulated data through data anonymization, pseudonymization, redaction or de-identification?

Control Weighting

Validation Cadence

Annual

NIST CSF Function

Identify

Supply Chain Risk Management (SCRM) Tiers

Applicable SCRM tier levels for this control

Tier 2 - Operational

Tier 3 - Tactical

Core Control Designations

Special designations and baseline inclusions

MAD: PRI-05.3