Chapter 7 DXp InformatIon SeCurIty • Anti-malware support • Support for role-based access on resources • Log and remote monitoring • Security admin controls Chapter Summary • Information security defines policies for protecting data at rest and data during transit. • The key principles of information security are information security policies, data access policy definition, defense in depth, compartmentalization, least privilege by default, and centralized access. • Defense in depth can be implemented by using infrastructure-level security (firewalls and proxies, server hardware level protection, monitoring infrastructure, backing up jobs and synching jobs, disaster recovery, and a business continuity plan). • The process of creating information security policy includes information ownership identification, information classification, and information security policy definition. 212