Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Glossary > Custodian

What is Custodian?

Custodian Definition: Responsible for protecting an asset that has value, while in the custodian's possession.

Understanding Custodian

Responsible for protecting an asset that has value, while in the custodian possession. A data custodian is responsible for the safe storage, transport, and handling of information assets but typically does not have authority over the data itself. Custodians implement and maintain security controls according to requirements specified by data owners. The custodian role is defined in frameworks like ISO 27001, NIST CSF, and COBIT. Organizations implement the custodian role through formal assignment of responsibilities, documentation, training, and accountability mechanisms. For example, an IT department might serve as the custodian for corporate databases, responsible for implementing backup procedures, access controls, and encryption as specified by the business units that own the data. Related terms: Data owner, Data steward, Information lifecycle management, Chain of custody, Asset management, Responsibility assignment matrix.

Learn More About Custodian:

Cloudficient: What is a Data Custodian

Related Cybersecurity Terms

Smart Contract Security
Port Address Translation PAT
Network Function Virtualization NFV
Post Quantum Cryptography
Back to Glossary