Institutional Standards & Policies

Data Policy Awareness Password Banner Breach Smartphone Compliance MFD Standards Classification Cloud-Security Awareness-Training Change-Management Security Password-Security Operations Access-Control Account-Management System-Configuration

Standards and Policy Information

Standards

The following Standards have been approved by the TRU Information Security Committee and apply to all staff, faculty, and third parties who access University Information:

Policies

Official TRU Policies that apply to all staff, faculty, students, and third parties who access University information.

Related Articles (11)

Breach Protocol

The Breach Protocol provides guidance on the steps that TRU will follow when there is evidence that confidential information has been accessed without authorization.

Generic Account Standard

This standard establishes the process for creating and maintaining “Generic/Shared Accounts” for network and system access.

Information Classification Standards

Information Security Committee

Information Security Team

ITS Change Management

Change Management establishes the process for controlling modifications to hardware, software, firmware, and documentation to ensure that information resources are protected against undocumented modification before, during, and after system implementation.

Mobile Device Standard

A standard addressing notebooks, netbooks, USB flash drives, and any other mobile storage media.

Multi Function Device Standards

MFDs now combine printing, fax, scanning, email, and copy functions and include the ability to store and share large amounts of data over networks. This standard addresses the minimum configuration to meet the University's security requirements.

Password Standards

Guidance on minimum password strength and usage for TRU systems.

Policies

Thompson Rivers University Policy Documents

Smart Phone Standards

Smart phones such as BlackBerrys and iPhones which are used to access University systems such as email, require a number of unique security measures.