Re: ISO Cybersecurity Umbrella Policy

[randy <marchany () VT EDU>]

Our overarching policy is at www.policies.vt.edu/7200.pdf. We're updating
the standard that goes along with this policy. It will basically say we
will follow the 20 Critical Security Controls as the implementation method.
Will let you know when it's finished.

-Randy Marchany
VA Tech IT Security Office and Lab

On Tue, Mar 3, 2020 at 9:07 AM Schwartz, John <jschwartz () wpi edu> wrote:

> Hello All,
>
> We are currently in the process of refreshing our Security Policies, and
> based on feedback from our Trustees, we are looking to create "overarching"
> Cybersecurity Umbrella Policy that covers a range of IT security controls
> from hardware, software and access control to network security.
>
> Does anyone have a similar policy that you would be willing to share?
>
> Thank you.
>
>
>
> *John Schwartz – CRISC, CISA, CIA*
>
> *Chief Information Security Officer (CISO)*
>
>
>
> [image: F6024058]
>
> *Worcester Polytechnic Institute*
>
> 100 Institute Road
>
> Worcester, MA. 01609-2280 USA
>
> e-mail: jschwartz () wpi edu
>
> p: 508-831-6868
>
>
>
> **********
> Replies to EDUCAUSE Community Group emails are sent to the entire
> community list. If you want to reply only to the person who sent the
> message, copy and paste their email address and forward the email reply.
> Additional participation and subscription information can be found at
> https://www.educause.edu/community

**********
Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the 
person who sent the message, copy and paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community