University Policy Library
Virtual Visit Request info Apply
MENUMENU
  • Manuals
    • Academic and Faculty Affairs
    • Campus Operations
    • Equal Opportunity and Access
    • Financial Management
    • General Administration
    • Human Resources
    • Information Technology
    • Lumberjack Athletics
    • Marketing and Communications
    • Research
    • Student Affairs
  • Indexes
    • By Subject
    • By Responsible Office
    • By Responsible Executive
  • Process
    • Policy Development and Administration
    • Policy Process Diagram
    • Policy Impact Statement
    • Policy Template
    • Policy Development Queue
    • Policies Under Review
  • About
    • University Policy Program
    • Policy Advisory Committee
    • Policy Liaisons
    • Policy Hierarchy
    • Frequently Asked Questions
  • Search
  • NAU
  • University Policy Library
  • Information Security
All NAU community members are required to immediately report any IT security issue, such a suspected or actual release of University data or a breach of University IT resources, devices, or systems. Dial 928-523-1511 to make a report.
If you have questions regarding this policy, contact Information Security Services at its-soc@nau.edu.
Information Security Program
Use the feedback form to provide input about this policy.
Information Technology

Information Security

This policy establishes the comprehensive security framework that Northern Arizona University uses to protect its University Information and information technology (“IT”) systems on which access to and the safeguarding of these resources depends. All University community members share the collective responsibility to protect University Information and IT Resources from harm through careful adherence to these requirements, which are designed to support the information-sharing needs of an academic culture. Failure to comply with these standards and requirements may result in denial of access to University Information and/or IT Resources and significant disciplinary action that could include civil and criminal liability.

Responsible Executive: Chief Information Officer
Responsible Office: Information Technology Services
Effective Date: June 21, 2005
Last Revised: August 19, 2022
Contact: Director, Information Security Services

View the Policy

View the Information Security Standards:

  • Auditing, Logging, and Monitoring
  • Data Backup and Disaster Recovery
  • Enterprise System Change Management
  • Information Technology Risk Assessment
  • Secure Data Center Physical Security
  • Software Patch Management
  • Vulnerability Management and Scanning

 

Keywords:

Information security
Information Security Committee
Information Security Office
Information Security Officer
Information security standards
University information