Information Security Management
The committee's initial work plan will be to follow apon the recently completed university-wide security risk assessment and to work directly with unit personnel to address the findings of that report. As a more general and long-term focus, the committee's job will be to promote campus-wide security awareness/compliance through outreach and consultation.
ITAC-ISM meets the first and third Thursday of each month from 1:30 to 2:30 pm in the CNS conference room.
Minutes are available upon request. Please note that minutes will be edited according to Chapter 119.071 of Florida Public Record Statutes.
ISM "To Do List"
- Risk assessment
- Data security support standards
- Enterprise data examples
- Add to Charter definition for guidelines
- Update Charter regarding maintenance of compliance records
- Password guidelines for Units
- Account management guidelines
- Physical security guidelines
- Add to AUP GL guest language to AUP
- Add to AUP self-service access to sensitive data
- Add to AUP password guidelines
- Network standard authentication retention requirements
- Recommend GL password policy updates
- Update relevant standards with PCI notice
- ISA/ISM organization
- Forensics procedures
- Email flow regarding private IP and /31.
Links:
Members:
- Jan van der Aa, Health Science Center
- Avi Baumstein, Health Science Center
- Charles Benjamin, Division of Housing
- Mark Bergeron, College of Law
- Colleen Ebel, Health Science Center
- Rodger Hendricks, Office of Academic Technology
- Wayne Hyde, Institute of Food and Agricultural Sciences
- Bob Johnson, College of Engineering
- Chris Leopold Institute of Food and Agricultural Sciences
- Michael Lucas, Office of the Registrar
- Tim M. Nance, Shands Hospital
- Eric Olson, College of Business
- Robert Staats, Academic Affairs
- Matthew Wilson, Research and Graduate Programs
- Allan West, College of Liberal Arts and Sciences
