Standards
Standards contain the following information:
- Define minimum requirements designed to address certain risks
- Define specific requirements that ensure compliance with policies
- Provide a basis for verifying compliance through audits
- Outline implementation and enforcements plans
- Balance protection with productivity
| Standard | Status | Approval Date |
|---|---|---|
| USG Institution and USO Information Security Plan Reporting Standard (ISPR-STD) (PDF) | Approved | Oct 2008 |
| USG Incident Response and Reporting Standard (PDF) | Approved | Nov 2008 |
| USG Password Security Standard (PDF) | Approved | Dec 2008 |
| USG Strong Password Standard (PDF) | Approved | Dec 2008 |
| USG AUP Interpretation and Administration Guideline (PDF) | BOR Approved | Jan 2009 |
| Minimum Security Standards for USG USO Networked Devices (PDF) | Approved | Jan 2009 |
| Risk Management Standard (PDF) | BOR Approved | Feb 2009 |
| Draft USG Red Flag Rules Standard/Guideline (PDF) | Under review | 1 Nov 09 |
The University System - Office of Information Security (OIS) web site contains links to other sites that are not owned or controlled by us. The information provided at these sites does not reflect the views of this Office or indicate an endorsement of a particular company or product. Please be aware that our Office is not responsible for the security and privacy practices of such other sites.