|
(Security Policies) |
In accordance with the COV ITRM 501-01, a specialized security awareness and training program must be implemented and refreshed annually for all managers, administrators, System Owners, Data Owners, and System Administrators, IT Disaster Recovery Team members and IT Security Incident Response Team members to focus attention on security and produce relevant and needed security skills and competency; Employee participation is mandatory. Further, technical training for all SVCC employees involved in the management, administration, operation, development, or use of information systems must be provided by SVCC per the instruction of the employee's supervisor. Security awareness for general users may include posters, emails, videos, internal newsletters, and similar media and can be aimed at all levels of users. Most general users simply need to understand good computer security practices such as protecting their physical environment, protecting passwords, and reporting security violations. Security training for this group of users will contain skills that will enable them to perform their jobs more securely while teaching them what they should do and how they should, or can, do it. General users should be taught what their roles are for protecting System Office and college information and computer systems. Please review the information contained in the links given on the left and the related web site links given below. Enhanced Security Management for Desktop/Notebook computers Information Technology Student/Patron Acceptable Use Agreement Information Technology Acceptable Use Standard Get Net Safe (on the application toolbar, go to browse, then full screen) Security Regulations and Solutions SVCC The "Duh's" of Security Awareness
|