Educause Security Discussion mailing list archives

Re: Data Classification - Data Request Process

From: Cheryl O'Dell <cherylo () UNL EDU>
Date: Tue, 8 Apr 2014 16:40:00 +0000

Hi Amanda!

Hope things are going well for you!  Here are UNL’s data classification guidelines:

http://its.unl.edu/ea/unl-data-security-guidelines-definitions

For access approval, we have a statement on the PII best practices page (http://its.unl.edu/ssn/bp) (towards the bottom 
under “Access and Storage Approval”)

Hope this helps,

Cheryl O


Cheryl O’Dell, CISSP
Sr. Information Security Analyst
University of Nebraska/Lincoln
126 501 Building, 68588-0203
(402) 472-7851
cherylo () unl edu<mailto:cherylo () unl edu>

Information Technology Services
Reliable. Resourceful. Relevant.



From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Amanda 
Williams
Sent: Monday, April 7, 2014 2:26 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Data Classification - Data Request Process

We are working on our data classification plan and was wondering what process places used to grant users from 
"department A" access to data that was owned/managed by "department B".

Thanks.

Amanda Williams
IT Security Officer
Pittsburg State University
620.235.4657

Current thread:

Data Classification - Data Request Process Amanda Williams (Apr 07)
- Re: Data Classification - Data Request Process Kees Leune (Apr 07)
- Re: Data Classification - Data Request Process Theresa Rowe (Apr 08)
- Re: Data Classification - Data Request Process Brian J Smith-Sweeney (Apr 08)
- Re: Data Classification - Data Request Process Cheryl O'Dell (Apr 08)