A tech company has implemented a security measure to confirm the secure removal or overwriting of sensitive data and licensed software on equipment before disposal or reuse. What type of security control was implemented?
The secure removal or overwriting of data (data sanitization) is a technological control. It involves technical means to ensure that information stored on electronic media is securely erased so that it cannot be recovered.
“Media sanitization and secure erasure are technical measures designed to prevent unauthorized recovery of information from equipment prior to disposal or reuse.”
— ISO/IEC 27001:2022, Annex A, Control 8.10 Storage media; ISO/IEC 27002:2022, 8.10
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit