The Information Security Office (InfoSec) promotes best practices through security awareness, online resources, targeted workshops, regular security awareness programs, as well as by publishing policies, standards, and guidelines. Furthermore, ISO enforces security elements within application, infrastructure, data architectures, and development methodologies, and is responsible for developing university policies, strategies, and standards, in addition to protection, disaster recovery, and business continuance procedures.
While it is the responsibility of the information resource owners, custodians, and users to comply with GDPR, FERPA, GLBA, PCI DSS, HIPAA, and other federal and state requirements, the Information Security Office is available to provide counsel and guidance to assist in the assurance of the confidentially, integrity and availability of information resources.