UC Information Security is dedicated to safeguarding the data of our students, faculty and staff members. InfoSec is a division of UCIT, although we serve the data security needs of the entire university.
Our primary purpose is to:
- Educate the user community on the ethical use of computer and network resources.
- Assist in the development and implementation of university-wide policies, standards, guidelines, best practices, controls and procedures to protect UC network & systems resources from intentional or inadvertent modification, disclosure or destruction.
- Authorize security maneuvers, including security scans and penetration testing affecting computer and network resources (except for those responsibilities specifically accorded to system administrators in this policy).
- Coordinate response to computer and network security incidents to include, but not be limited to, notification of incidents to UC offices as appropriate, contact with Incident Response teams external to UC, and the University Police Department. The response may draw upon the authority of UCIT to disconnect a computer on any UC system(s) that poses a threat to that system or other systems within the UC network.
- Provide consultation services, risk assessments and guidance in the area of information security.