Advances in information technology have changed our daily lives. Most faculty and staff members use computers to manage, share and store a wide range of information. Because you have access to information that is often personal and confidential, it is important for you to know how to protect that information. Security is the responsibility of all members of the University community.
What is the purpose of security awareness?
The purpose of awareness is to focus attention on security, creating sensitivity to the threats and vulnerabilities of computer systems and recognition of the need to protect data, information and systems.
What are some of the threats to information security?
- Password guessing
- Accidental disclosure of confidential information
- Misuse of systems or networks
- Abuse of system privileges
- Social engineering
- Malicious viruses, worms and Trojan horses from e-mails and downloaded files
- Theft of mobile devices (laptops, PDAs) that contain confidential information
Why is security awareness training needed?
It is important for students, faculty and staff to understand the importance of IT security and to ensure that each individual understands his or her responsibilities. In order to do our jobs, we must have information available when we need it. It must be accurate, and we must know the steps needed to safeguard its confidentiality when necessary. To be truly effective, everyone must do his or her part to secure the information environment.
The Risk, Security and Compliance office is committed to a strong approach to education, outreach and awareness training. We provide training for students, faculty and staff and are eager to work with any department or office on campus to ensure good security practices are in place.
Feel free to contact us to find out more.