Information Security
The CIRT -- Computer Incident Response Team -- helps you react to successful intrusions by helping determine whether or not privileged data has actually been compromised, and, if so, help to determine the extent and severity of the incident. How to contact the CIRT.
News
- Web application security course slides Security Training and WAS2b
- ALERT: New remote XFS vulnerability. Hosts found listening on port 7100 will be proactively blocked.
- Check out the new Security Blog!
- Revised UCSD Minimum Network Connection Standards released.
- Management Guide for Information Security at UC released.
- IS-3 Electronic Information Security revised.
Resources
IT Security Policies & Guidelines
- Management Guide for Information
Security at UC
The Guide identifies a range of strategies to create a more secure electronic environment for the University’s academic, business, and healthcare operations. It includes links to applicable University policies and guidelines and to helpful resources and tools.
- Electronic Communications Policy
The ECP establishes principles, rules, and procedures applying to all members of the University community to specifically address issues particular to the use of electronic communications.
- IT Security for UCSD Business Managers
- IS-2 Inventory, Classification,
and Release of University Electronic Information
The purpose of this bulletin is to establish guidelines for the classification of information assets:
- to aid risk assessments in conformance with University IT security policy and
- to identify the need for specific security measures to ensure the appropriate level of protection for resources.
- IS-3 Electronic Information
Security
Recently revised, the purpose of this bulletin is to establish guidelines for achieving appropriate protection of University electronic information resources (Resources) and to identify roles and responsibilities at all levels in the University of California system.
- IS-11 Identity and
Access Management
Newly issued, the purpose of this bulletin is to establish guidelines for identity and access management at the University of California.
- IS-12 Continuity Planning
and Disaster Recovery
Newly issued, the purpose of this bulletin is to provide recommendations and guidelines for information technology continuity planning and disaster recovery activities in support of the University’s commitment to protection of and accessibility to information resources.
- Network Security Policy
including Revised UCSD Minimum Network Connection Standards
This policy outlines the responsibility and mecanisms used to provide security of the UCSD Data Communications Network. It includes the UCSD Minimum Network Connection Standards.
- UCSD
Implementation Plan For Protection of Electronic Personal Identity Information
The purpose of this plan is to outline procedures for management of all electronic information that could be used, possibly in conjunction with other information, to impersonate an individual in ways that might cause serious loss of privacy and/or financial damage. Departments that manage activities that require collection or management of specific “personal identity information” (PII) must protect such data appropriately and also must report any compromise of that protection to affected subjects of that data.
- Computer Media
Decommissioning Procedures
Computers and media that have held sensitive data must be properly sanitized before being repurposed, surplused, or recycled.
Official Web site of the University of California, San Diego
University of California, San Diego, 9500 Gilman Dr., La Jolla, CA 92093
Copyright ©2009 Regents of the University of California. All rights reserved.