°ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023

Purpose

To provide °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 with guidance in developing and implementing the appropriate protective safeguards to support the confidentiality, integrity, and availability of °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 assets and information.

Policy

°ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 faculty, staff, students, and appropriate third-parties are provided information security awareness education. °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 faculty and staff are adequately trained to perform their information security-related duties and responsibilities consistent with related policies, procedures, legal requirements, regulations, and agreements. To accomplish this, °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 has implemented an information security awareness program that discusses common security shortcomings that can be strengthened through individual action. °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 reviews the information security awareness program annually and appropriate updates are applied based on the findings of the annual reviews. °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 requires faculty and staff to verify annually that they have completed their information security awareness training and are aware of their data security responsibilities and °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023’s information security policies.

Summary

• °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 administers general security training that is used to enhance information security awareness for faculty, staff and students.
• Training may include the following: posters, email advisories, log-on screen messages, classroom training or E-Learning
• °ÄÃÅÁùºÏ²Ê¿ª½±½á¹û2023 offers role-based training to authorized users with privileged rights to minimize administrative privileges and utilization of administrative accounts only when required.
• Physical and information security personnel are given specific training based upon the needs of their roles

Training and Awareness Policy Details [pdf]