How to resolve Infra entity should be classified

One of the most common compliance requirements is to have an inventory of all your infra-assets & to classify these assets based on the kind of information they hold.

<This is usually mentioned as a part of the organization's Data-Classification policy>

In Sprinto, all your infra-assets are listed under the Infrastructure section. As an organization undergoing compliance, you are required to classify these assets as Production / Not Production.

Based on the asset type & classification provided, Sprinto will check for additional compliance-related requirements such as encryption for storage assets & alarms for computing assets.

You can use tags to automatically classify assets on AWS and Azure, and labels to do the same on GCP.

Use these Key / Value pairs: -------------------------------------

Key: sprinto Value: prod <For Production assets>

Key: sprinto Value: notprod <For Not-Production assets>

Apart from the above Sprinto will also recognize whether an asset is prod or non-prod if the tag is set as env or environment.

For eg: Key: env and Value: prod

For eg: Key: environment and Value: prod

Thank you for reading. You can write to [email protected] for any additional queries.

PreviousHow to resolve Vendor risk assessment management review should be done periodically monitor NextHow to resolve Sprinto check for classifying infra entities