Open CITS Certification Program - Problem Report 0051 Details

Open CITS Certification - Problem Reporting and Interpretations System

This page provides all information on Problem Report 0051.

Problem Report Number	0051
Submitter's Classification	Specification problem
State	Resolved
Resolution	Interpretation (INT)
Problem Resolution ID	INT.ITSC.0010
Raised	2020-07-31 05:49
Updated	2020-08-28 16:56
Published	2020-08-28 16:56
Documents	Conformance Requirements
Certification Program	Open CITS Certification Program
Specification	Open CITS Conformance Requirements Version 1.1
Location in Spec	Document is Open CTS Conformance Requirements Version 3 Section 3.3.4 Data Engineering
Problem Summary	TSDE07 Data Loss Prevention - remove the requirement to define best practices
Problem Text	It is too much to expect all data engineers to have performed data loss prevention and have in depth knowledge of the policies involved. A data engineer should know the lifecycle of data management and understand data security but not data loss prevention in depth. Data Loss Prevention best practices should be followed by Data Engineers but those practices and policies should be defined elsewhere, e.g. security or business controls. Requirement Rationale should read: Data Engineering Professionals must be able to advise and/or manage the implementation of DLP Solutions to enact the required DLP policies.

Review Type	SA Review
Start Date	2020-07-31 05:49
Last Updated	2020-08-14 15:37
Completed	2020-08-14 15:37
Status	Complete
Review Resolution	Interpretation (INT)
Review Conclusion	Agreed without objection by the WG on 14/Aug 20: for TSDE07 The Requirement should read: Advise and/or manage the implementation of DLP solutions. The Requirement Rationale should read: Data Engineering Professionals must be able to advise and/or manage the implementation of DLP Solutions to enact the required DLP policies.