Information Resource Use and Security (pending)
POLICY STATEMENT
The computing and information resources of the University of Texas at San Antonio (UTSA) are dedicated to the support of the common mission of learning, teaching, conducting research and community service. Shared use of and access to these resources requires legal and ethical behavior from all users.
UTSA strives to provide a robust, technologically progressive and secure environment for the use by the UTSA community. The protection of valuable data within its academic, research and administrative computing facilities is of the utmost importance. . The University will promote the the widest possible access, use and integrity of information technology resources while providing safeguards against compromise, degradation or disruption of information services vital to the work of the faculty, students and staff.
RATIONALE
Protecting the integrity of UTSA’s shared information resources and preserving access to them is a community effort that requires each member to act responsibly and to guard against abuses. Both the University community as a whole and each individual user have an obligation to abide by the standards and best practices of the information security program, as outlined in this policy and in the published standards and handbook.
In order to provide the optimum use of its computing and information technology resources for the entire University community, UTSA reserves the right to limit or restrict their use based on institutional policies and financial considerations, as well as in the event of a violation of University policy, contractual agreement or state/federal laws. Users must abide by all applicable restrictions, whether or not they are built into the operating system or network and whether or not they can be circumvented by technical means.
UTSA is committed to academic freedom, regardless of the medium of expression. However, the individual’s rights of expression or privacy may be superseded by the responsibility of the University to protect the integrity of information technology resources, the rights of all users and property of the University.
This policy consists of numerous standards which are accessible via the links to the website of the Office of Information Technology. These standards set the appropriate guideline of acceptable practices regarding information technology. All members of the UTSA community – faculty, students, and staff – are required to familiarize themselves with the standards and to conform to these rules and practices: http://www.utsa.edu/oit/std/index.html.
In order to maintain currency of the Information Security Program, this policy is subject to annual review. Modifications and updates will be made according to procedures published on the OIT Website.
SCOPE
This policy provides general information on the principles which underlie applies UTSA’s information security program. It applies to all users of computing and information technology resources including faculty, staff, students, guests and external organization, and all persons who have access to UTSA computing resources. All resources owned, managed and overseen by the University are covered by this policy, including hardware and software, documentation and other reference materials and all data residing on UTSA computers or on other University-owned electronic storage media. All those granted access to UTSA information resources must follow the Information Resources Acceptable Use Policy at http://www.utsa.edu/oit/policy/index.html.
RELATED STATUTES, POLICIES, REQUIREMENTS OR STANDARDS
- UTS 165, UT System Resources Use and Security Policy
- Title 1 Texas Administrative Code, Part 10, Chapter 202, Subchapter C
- Higher Education Opportunity Act of 2008
CONTACTS
Questions regarding the policy Information Resources Acceptable Use and Security, contact the following office (s): Office of Information Technology.
DEFINITIONS
The University will utilize the definitions which appear in University of Texas System UTS 165: http://www.utsystem.edu/bor/procedures/policy/policies/uts165.html.
RESPONSIBILITIES
Responsibilities for appropriate use and security shall align with UTS 165:
http://www.utsystem.edu/bor/procedures/policy/policies/uts165.html.
PROCEDURES
Information Resources Acceptable Use
All individuals who have been granted access to information technologies of the University of Texas at San Antonio must acknowledge the established rules for their use by signing the Acceptable Use of Information Resources statement (http://www.utsa.edu/oit/policy/index.html)
All users are responsible for the resources assigned to them and for following good judgment in the protection of those resources.
Disciplinary Actions
Violation of this policy and its reference standards may result in disciplinary action through regular, published disciplinary procedures and may include termination for employees and temporary employees, dismissal of interns and volunteers, suspension or expulsion of students, and termination of employment relationships with contractors or consultants. Individuals may be subject to loss of computing privileges and access to UTSA Information Resources and may face civil and/or criminal penalties, depending on the nature of the violation.
All Other Procedures
For all other procedures outlined in this policy consult the Information Resources Computer Security Handbook (http://www.utsa.edu/oit/security/sec_handbook_1.html).
SPECIAL INSTRUCTIONS FOR INITIAL IMPLEMENTATION
(Optional)
FORMS AND TOOLS/ONLINE PROCESSES
(Optional)
APPENDIX
(Optional)