IT Security Policy Framework
N.B. We are migrating the authoritative version of our Security Policy Framework to this web-site to facilitate an iterative continuing development of content within the Framework. Each Section of the Framework has its own web-page, accessible from the menu at the right side of this page.
The approved Policy Framework provides management's authorization for development of our IT Security Program.
In December, 2009 University President Alastair Summerlee approved the IT Security Policy Framework. The Final Draft of the Framework was submitted to the President by CIO Michael Ridley with the support of the Information Technology Steering Committee (ITSC). That approved version is attached as a file to this page.
The Framework had been presented and circulated for feedback from IT governance constituents and the community at large. The enterprise-level IT Security Policy Framework was introduced to ITSC, ISC and ITSIG in late 2008. Here is a link to a presentation given in Dec/08 to the Information Services Council (ISC): Information Technology Security Program. Here is a link to a Feb/09 "Briefing Paper " prepared for the ITSC.