Information Security Policies
All users of the computing or information services provided by the University should be familiar with and abide by the Information Security Policy.
Having read the Information Security Policy you should then be familiar with all other policies that are appropriate for your course, research or role.
Extra care should be taken when dealing with sensitive information; if you are in any doubt about the sensitivity of information, or how it should be handled, then please contact the CiCS Helpdesk. Examples of sensitive information include personal information, financial data and unpublished research.
Systems / Operations
Vulnerability Management Policy (login to access)
Patch Management Policy (login to access)
Management of Privileged Accounts (login to access)
Malicious Software Management Policy (login to access)
Log Management Policy (login to access)
Firewall Policy (login to access)
Information Security Incident Policy
All incidents involving actual or potential breaches of Information Security must be reported in accordance with the policy below.