Information Technology Policies
Division of Information Technology (IT@Sam)
User Practices & Policies
- Acceptable Use Policy (IT-03)
- Electronic Communication Policy (IT-20)
- Non-Disclosure Agreement Policy (IT-16)
- Policy Compliance (IT-00)
- Portable Computing Policy (IT-26)
- Privacy Policy (IT-27)
- Technology Acquisition Oversight Statement (IT-S03)
- Technology Security Training Policy (IT-13)
- Third Party Access Policy (IT-28)
- User Account Eligibility (IT-S04)
- User Accounts Password Policy (IT-02)
- Virtual Private Network Access Policy (IT-04)
Systems & Networking Policies
- Identification/Authentication Policy (IT-22)
- Information Technology Change Management Policy (IT-09)
- IT Physical Access & Environmental Policy (IT-25)
- Malicious Code Policy (IT-24)
- Network Use and Vulnerability Assessment Policy (IT-12)
- Server Administration Policy (IT-14)
- System Development & Acquisition Policy (IT-08)
- User Accounts Management Policy (IT-01)
Data Protection Policies
- Data Access Review Policy (IT-05)
- Data Backup Policy (IT-11)
- Data Classification Policy (IT-06)
- Data Security for Online and Mobile Applications Policy (IT-30)
- Digital Encryption Policy (IT-10)
- Media Sanitization Policy (IT-15)
- Web Privacy and Site Link Statement (IT-S02)
- Web Site Disclaimer Statement (IT-S01)
HIPAA Policies
- HIPAA Hybrid Entity Designation Policy
- HIPAA Breach Notification Policy
- HIPAA SHSU Physicians Policy
Security/Standards
- Application Security Policy (IT-29)
- Authorized Software Policy (IT-19)
- Electronic and Information Resources Accessibility Policy (IT-32)
- Firewall Policy (IT-21)
- Intrusion Detection/Prevention and Security Monitoring Policy (IT-23)
- IT Administrator/Special Access (IT-18)
- Risk Assessment Policy (IT-17)
- Technology Incident Management Policy (IT-07)
- InCommon Federation: Participant Operational Practices
- SHSU Information Security Program
- SHSU Information Security User Guide