Computer Security Handbook, Part 1 - Introduction

General Policy

UTSA seeks to provide a secure and responsible environment for students, faculty, and staff using University information resources. In return, UTSA expects all members of its community to use these resources responsibly, abiding by all laws and policies regulating their use. Information security standards may be found in the Texas Administrative Code Information Security Standards 1 TAC 202.1 - 202.8.

UT System Policy may be found in Business Procedures Memorandum 53-02-96. UTSA policies are in "ELECTRONIC COMMUNICATION USING UNIVERSITY COMPUTERS AND NETWORKS AT UTSA" and "THE ORGANIZATION AND APPROPRIATE USE OF THE INTERNET AT UTSA". These documents may be found in chapter 8 of the Handbook of Operating Procedures, sections 8.12 and 8.13 respectively.

Definitions

Information Resources - Computer and telecommunications hardware, software, networks and the information stored therein.

Confidential Information - Information that is exempt from disclosure under the Texas Public Information Act and/or other applicable state/federal law (e.g. student grades).

Sensitive Information - Information that requires special precautions to protect from unauthorized modification or deletion (e.g. financial data). It may or may not be confidential.

Security Incident - An event that results in unauthorized access, loss, disclosure, modification, or destruction of information resources, whether accidental or deliberate.

Control - Protective action, device, policy, procedure, technique, or other measure that reduces exposure.

Position of Special Trust - Position in which individual can view confidential information and/or alter sensitive information, or is depended upon for continuity of essential information resources.

NEXT>>

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

---