The Office of Information Technology - UTSA

This document should be rendered in an HTML format. If you are using an editor that does not show HTML documents please skip to page content, links on this page, and/or site navigation.

Copyright (c) 2007. The University of Texas at San Antonio. All rights reserved.

UTSA Office of Information Technology

IT | UTSA.edu | UTSA Today
IT Master Plan Committee | TPAC | Plan 1999-2003(pdf) | Plan 2001-2005(pdf) | Plan 2003-2007(pdf)
Report a Security Incident Online | Request Help Desk Online
What We Do | IT Staff | IT Identity Guidelines | Email OIT
IT Security | UTSA Computer Security Handbook | Report a Security Incident Online
Admin Computing | Distance Learning | Enterprise Systems | Help Desk | IT Security | Student Computing Svcs | Telephone Svcs
After Hours | Black Berry UTSA | Manage Outlook | Message Cntr | Network Svcs | Quick Facts | Sys Admins | XP Firewall | Windows Svcs
Site Keywords | Helpful User Hints

Information SecurityUTSA

Computer Security Handbook, Part 2 - Rules and Responsibilities

We all have responsibility for maintaining the security and confidentiality of information resources and must comply with security policies and procedures. Certain individuals, however, have specific information security responsibilities that are established in state directives:

Chief Administrative Officer (President of UTSA) - Establishes and maintains security and risk management programs for information resources at UTSA.

Information Resources Manager (Associate Vice President for Information Technology) - Maintains policies and procedures that provide for security and risk management of information resources.

Information Resources Security Officer (Director of Strategic Planning) - Directs policies and procedures designed to protect information resources (e.g. identifies vulnerabilities, develops Security Awareness Program, etc.).

Owners of Information Resources (Vice Presidents, Associate Vice Presidents, Department Heads) - Responsible for carrying out the program that uses the resources. This does not imply personal ownership. These individuals may be regarded as program managers (e.g. Associate Vice President for Financial Affairs is the owner or "program manager" of financial information).

Custodians of Information Resources (e.g., Directors of Administrative Computing, Technology Support Services, Distance Learning and Telephone Services) - Provide technical facilities, data processing, and other support services to owners and users of Information Resources.

Technical Managers (Network and System Administrators) - Provide technical support for security of information resources.

Internal Auditors - Conduct periodic risk-based reviews of information resources security policies and procedures.

Users - Access University information resources in accordance with the owner defined controls and access rules.

<<PREVIOUS       NEXT>>

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Annette Evans, Ph.D.
Information Security Officer

©The University of Texas at San Antonio One UTSA Circle San Antonio TX 78249
Revised: 05/12/2008
Refer Comments to: oit@utsa.edu
Identity Guidelines | Policies | Emergency Preparedness | Required Links