Educause Security Discussion mailing list archives

Re: IT security policies and procedures

From: "Joel L. Rosenblatt" <joel () COLUMBIA EDU>
Date: Fri, 21 Mar 2014 11:54:37 -0400

Hi,

Here is the pointer to the Columbia University policies on Computing
and Technology

http://policylibrary.columbia.edu/node_browser/nodes_by_category/term/34

Enjoy!

Joel


Joel Rosenblatt, Director Network & Computer Security
Columbia Information Security Office (CISO)
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel
Public PGP key
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x90BD740BCC7326C3


On Fri, Mar 21, 2014 at 11:31 AM, Pedersen, Krystal <K.Pedersen () neu edu> wrote:

Hello - Here's Northeastern University's "SecureNU" page which includes a
series of policies, such as: Acceptable Use, WISP, SSN/PII Handling, and
others. Hope this helps.



http://www.northeastern.edu/securenu/?page_id=128



Krystal Pedersen, CISA

IT Audit Manager



http://www.northeastern.edu/internalaudit



From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Peter Setlak
Sent: Friday, March 21, 2014 11:26 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] IT security policies and procedures



We just recently finished a policy for stewardship of email - outlining the
process we go through to access accounts and to prevent abuse of such
privileges. We are also in the process of updating policies (such as data
classification and logging) which will be posted here
(http://www.colgate.edu/itsecurity/policy) when completed.



On Fri, Mar 21, 2014 at 11:04 AM, Dan Navarro <dnavarro () umd edu> wrote:

Hello Educause IT Security colleagues,



Here at the University of Maryland we are in the process of reviewing our
policies on data management/access and IT security in general.  I have an IT
policy from Indiana, but if any of your universities have such policies, I
would certainly appreciate receiving a copy or link.



Thanks in advance.



-Dan



Dan Navarro

Director

Office of Academic Computing Services

A unit of the College of Behavioral and Social Sciences
University of Maryland

dnavarro () umd edu

301-405-1661







--

Thank you,

Peter J. Setlak
Network Security Analyst, GSEC, GLEG, GCPM
Colgate University
---
psetlak () colgate edu
(315) 228-7151
Case-Geyer 450


Colgate IT Security - http://colgate.edu/itsecurity

Think Green! Please consider the environment before printing this email.



Engage with Colgate University:

News blog, Twitter, Facebook, Google+, Delicious, YouTube, Flickr,
Pinterest, LinkedIn

Current thread:

IT security policies and procedures Dan Navarro (Mar 21)
- Re: IT security policies and procedures Peter Setlak (Mar 21)
  - Re: IT security policies and procedures Pedersen, Krystal (Mar 21)
    - Re: IT security policies and procedures Joel L. Rosenblatt (Mar 21)
- Re: IT security policies and procedures Shamblin, Quinn (Mar 21)
- Re: IT security policies and procedures Swick, Forrest (Mar 21)
  - Re: IT security policies and procedures Dan Navarro (Mar 21)
    - Re: IT security policies and procedures Donna Volpe Strouse (Mar 21)
- <Possible follow-ups>
- Re: IT security policies and procedures Evelyn Pidgeon (Mar 21)