In support of ImpacT and the call to provide the university community with tools and the knowledge to safeguard and sustain our systems, data, and reputation, the Office of Information Security (OIS) has initiated a complete revision and expansion of the OIS policy library. The goal is to foster a strong security culture at WashU through clear and comprehensive coverage of all recommendations in the National Institute of Standards and Technology (NIST) Cyber Security Framework
The Cyber Security Executive Advisory Committee has reviewed and approved five new policies. These policies are published on the OIS website, and include:
- Policy 100: Information Security Program
- Policy 101: Information Security Status Monitoring, Reporting, and Review
- Policy 107: Information Technology Business Continuity and Disaster Recovery Planning
- Policy 109: Information Security Incident Reporting, Response, and Recovery
- Policy 110: Information Technology Change Control and Management
Additional new policies will be published to the website in the coming months.
We encourage you to review the policies and become familiar with them so you can implement them in your day-to-day activities. Email OIS with any questions. For urgent issues, please call us at (314) 933-3333.
Your patience as we enhance our services is appreciated.
For current status and planned maintenance about this and any WashU IT services, we invite you to explore the Status Page.