Protecting the Information in Your Care
All university employees and volunteers must adhere to the guidance and standards in these Best Practice manuals.
These three security manuals are designed to help you – as an ECU employee, manager or IT support staff member – fulfill your responsibilities for protecting the information in your care. They are for general guidance and may not address all job aspects or working environment – managing HIPAA, FERPA and other sensitive information are examples – so take additional precautions to ensure all information is safe and secure.
The standards here are based on the ISO 27002 Information Technology Security Techniques Code of Practice and consider the unique aspects of our academic, research, service, administrative, legal, regulatory and contractual activities and requirements.
Each best practice is accompanied by a statement of responsibility, an activities list and a link to the relevant security standard.
For more information on your responsibilities for legal and regulatory compliance, contact your supervisor or departmental compliance coordinator for assistance. If you have general questions about information security requirements and practices, submit an Information Security and Best Practices support ticket.