Information Security is the responsibility of everyone in the University. This site details your responsibilities, and highlights some of the risks that you might face.
Information Security has three core principles -
- Confidentiality - ensuring only those that ought to have access do so.
- Integrity - ensuring that information cannot be modified without detection
- Availability- ensuring information can be accessed when needed.
Why do we need good Information Security?
Information is a vitally important University asset and we all have a responsibility to make sure that this information is kept safe and used appropriately. Without due care, personal, research or business information can be misplaced, leaked or stolen.
What do I need to know/do?
You need to be aware of the University policies that have been put in place to avoid breaking the law and avoid causing the University financial and potential reputational damage. As an institution, we're bound by the Data Protection act, and we must take care of personal data. There's a statement from the University about our obligations here.
On this site, we've brought together the relevant University policies, and highlighted some of the risks you may face. They're also some practical advice on how you can protect the University's data, by taking the technical measures needed, to stay compliant with the data protection act.
If you have any queries regarding Information Security, please contact IT Service's Information Assurance team at firstname.lastname@example.org