Educause Security Discussion mailing list archives

Security language in all IT job descriptions

From: Andrea Childress <000000959e82509d-dmarc-request () LISTSERV EDUCAUSE EDU>
Date: Tue, 6 Nov 2018 17:34:11 +0000

Hello all,

Does anyone have any language in IT (or all employee) job descriptions that requires information security 
responsibility? We want to add some language to hold people accountable in job descriptions that translate into 
performance evaluation elements.

If you do, is it the same language for all job descriptions or do you have separate language by job type i.e. system 
admins are required to patch servers?

We are discussing ideas such as:
High degree of confidentiality and integrity
Coordinate and take direction from security standards
Use security approved tools and resources
Follow onboarding process for new services and projects
Communicate and report security incidents and issues to management

Thanks in advance,
Andrea

Andrea Childress
Executive Director
UNK Information Technology Services
Governance, Risk, and Compliance
Cybersecurity and Identity | ITS |
114 Otto Olsen, 68849
University of Nebraska | nebraska.edu
Kearney | Lincoln | Omaha
308-865-8789

Current thread:

Security language in all IT job descriptions Andrea Childress (Nov 06)
- Re: Security language in all IT job descriptions Kevin Wilcox (Nov 06)
- Re: Security language in all IT job descriptions John Virden (Nov 06)
- Re: Security language in all IT job descriptions Dan Oachs (Nov 07)