There are three cybersecurity standards that have been newly created or updated.
Standard-InfoSec-RA-001-Risk Assessment is a more detailed document that gives guidance to everyone on campus on how to conduct a risk assessment, as data and system owners are ultimately responsible for the risks to their systems and data.
Standard-InfoSec-AU-001-Auditing & Logging Accountability spells out the need for security controls surrounding our systems and data, managing of risks and providing guidelines for security best practices regarding audit record retention.
Standard-InfoSec-GP-004-Acceptable Use of IT Resources is a companion piece to the University of Tennessee’s system-wide policy IT0110 – Acceptable Use of Information Technology Resources which gives clarification on specific sections as it regards to UTHSC.
Any questions about these or any Cybersecurity standards should be directed to the Office of Cybersecurity at email@example.com or 901.448.1880.
Stay safe everyone!