information security categorization

Information security categorization is the process of classifying information systems and data based on the potential impact of confidentiality, integrity, and availability loss to determine appropriate security controls and protections.