Module 01: Data and Privacy - Practical Activity
π
Date Started: 2026-05-01
π
Date Completed: 2026-05-02
π§ͺ Activity Type:
Scenario-based Cybersecurity professional simulation: Acting as an IT team member to design an enterprise backup strategy for a large retail franchise
π― Lab Goal:
To develop a secure, compliant, and efficient data backup strategy for a large retail franchise business, ensuring critical data is protected, privacy regulations are upheld, and business continuity is maintained.
π What I Did:
- Evaluated backup responsibility options and selected an Automated Backup System with IT team oversight, documenting why automation alone is insufficient without monitoring.
- Identified and categorized critical data types the retail franchise must back up, prioritizing sensitive, operational, and compliance-related information.
- Analyzed daily backup types (Full, Differential, Incremental), selected the most appropriate method for daily operations, and justified the choice based on efficiency and recovery needs.
π What I Found:
- Step 1 (Backup Responsibility): An Automated Backup System managed and monitored by the IT team is the optimal choice. Automation ensures consistency and reduces human error, but active monitoring, regular integrity checks, and alerting are essential to confirm backups complete successfully and can be restored when needed.
- Step 2 (Data Types to Backup): The following data types are critical and must be included in the backup plan:
β’ Employee records β HR files, payroll data, contracts (privacy & legal compliance)
β’ Financial records β Transaction logs, invoices, tax documents (audit & regulatory requirements)
β’ Customer data β PII, payment details, loyalty accounts (GDPR/CCPA compliance & trust)
β’ Business documentation β Policies, vendor contracts, operational procedures (continuity & governance)
β’ Intellectual property β Proprietary processes, branding assets, trade secrets (competitive advantage)
β’ System data β Configurations, access logs, security policies (rapid recovery & incident response)
- Step 3 (Daily Backup Type): Incremental backups are best for daily useβthey capture only changes since the last backup, reducing storage and network impact. When paired with a weekly full backup and regular restoration testing, they support both efficiency and reliable recovery.
π‘ What I Learned:
- Automation improves backup reliability, but human monitoring and regular testing are non-negotiable to ensure backups are valid, restorable, and aligned with RTO/RPO goals.
- Data classification and selecting the right backup strategy (e.g., incremental + weekly full) help balance security, compliance, and operational efficiency.
- Backed-up data must be encrypted, access-controlled, and stored securely privacy protections apply to backups just as they do to live data.
πΈ Screenshot:
π Screenshot Restriction Notice
Screenshots from IBM SkillsBuild simulated lab environments are proprietary content and cannot be shared externally per IBMβs academic integrity policy and terms of use.
Lab Completion Verified:
- β
Platform: IBM SkillsBuild
- β
Module Status: 100% COMPLETE
- β
Activities Completed: Backup strategy development (responsibility, data types, incremental backups)
- β
Completion Date: 2026-05-02
Alternative Evidence: Comprehensive written documentation provided in sections above.