Hi Heather, The University of Washington has a "suite" of information security policies:
* "Information Security and Privacy Roles, Responsibilities, and Definitions" (Administrative Policy Statement 2.4<http://www.washington.edu/admin/rules/policies/APS/02.04.html>) contains the roles of various UW individuals and groups and various key definitions * "Information Security Controls and Operational Practices" (Administrative Policy Statement 2.6<http://www.washington.edu/admin/rules/policies/APS/02.06.html>) provides an overview of information security protocols (probably the most relevant to your question) * "Information Security and Privacy Incident Reporting and Management Policy" (Administrative Policy Statement 2.5<http://www.washington.edu/admin/rules/policies/APS/02.05.html>) covers what to do once a breach has occurred All my best, Rebecca REBECCA GOODWIN DEARDORFF Director of Rules Coordination Office of the President 448 Gerberding Hall Box 351210 Seattle WA 98195-1210 206.543.9219 [email protected]<mailto:[email protected]> / washington.edu/rules [logo] From: [email protected] [mailto:[email protected]] On Behalf Of Heather Foster Sent: Tuesday, July 12, 2016 2:23 PM To: Institutional policy-related discussions ([email protected]) <[email protected]> Subject: [acupa-l] Vulnerability or Threat Assessment policies Hello, Does anyone have a vulnerability or threat assessment policy? Our primary interest is related information security and resources, but would welcome anything you have on the books. Thanks so much, Heather Heather M. Foster Policy Specialist Institutional Compliance & Risk Services The University of Texas at San Antonio P 210.458.5537 F 210.458.4993 Replying to Messages: Replying (using Reply) to an ACUPA-L e-mail will distribute your message to the ENTIRE list of members. To send a message privately, reply directly to the individual who sent the message (their e-mail address appears in the "From" line of their original e-mail). To Unsubscribe: Go to http://www.acupa.org/MembershipForm_Discontinue.html and complete the form. We will remove you from the list within 24 hours, during normal business hours. Questions about the ACUPA e-list? Contact Jamie Parris at [email protected]<mailto:[email protected]?subject=ACUPA%20e-list%20assistance> or 607-255-6837.
