Information Security

The mission of the OIT Information Security Office is to deliver and maintain a set of information security programs that safeguard the Institute's information assets against unauthorized use, disclosure, modification, damage or loss. This is done by educating the campus community about security related issues, assessing current policies and developing new policies, assisting in strengthening technical measures to protect campus resources, and developing mechanisms to react to incidents and events that endanger the Institute's information assets.

The OIT Information Security Office, under the direction of the OIT Director of Information Security, will accomplish many of these objectives with the following programs:

• Unit-level Information Security Policy Program
• Sensitive Service Protection Program
• Unit-Level Perimeter Protection Program
• Credit Card Compliance Program
• Information Security Risk Management Program
• Information Security Education, Awareness & Training Program
• Vulnerability Assessment Program
• Intrusion Detection/Prevention Program
• Incident Response Program