Purpose - The Security Training Standard describes the requirements to ensure each user of UTSA information resources (IR) receives adequate training on computer security issues.

Audience - The UTSA Security Training Standards applies equally to all individuals who use any UTSA information resource.

1. All new users must attend an approved Security Awareness training class prior to, or within 30 days of, being granted access to any UTSA information resources.

2. All users must sign an acknowledgement form stating they have read and understood UTSA requirements regarding computer security policies and procedures.

3. All users (employees, consultants, contractors, temporaries, etc.) must be provided with sufficient training and supporting reference materials to allow them to properly protect UTSA information resources.

4. The Office of Information Technology (OIT) must prepare, maintain and distribute one or more information security manuals that concisely describe UTSA information security policies and procedures.

5. OIT must develop and maintain a communications process to be able to communicate new computer security program information, security bulletin information and security items of interest.

6. A specialized security class will be provided for departmental systems administrators and others who maintain servers on campus.