The following policies, guidelines, practices, and agreements reflect the general status of IT at the University of Arizona and within the Collge of Social & Behavioral Sciences. The UA provided minimum criteria in the form of an Information System Policy and emphasized that it is the Dean's and AVP's responsibility to meet these criteria and implement additional criteria as needed to ensure the security and reliability of the UA network, data, and resources. These additional criteria should reflect the unique environments of the colleges and other administrative units.

Final college-level- IT policies have been vetted by the college's Information Technology Advisory Committee.

Interim policies have the effect of a final policy, but have not been vetted by the entire committee, but have been vetted though a working group and await final approval during the AY referenced. 

UACONNECT 

UAConnect Pre-Migration Mac (pdf)

UAConnect Pre-Migration Windows (pdf)

UAConnect Types of Accounts (pdf)

UAConnect Powerpoint (pdf)

UAConnect Website (external link)

UAConnect Link (external link)

 

Policy

ABOR Information Security Guidelines (external link)

Information Security Initiatives (pdf), August 26, 2008

IT Security, President's Memo (external link), February 21, 2007

Personally-Owned Equipment (external link), AZ State Law

Acceptable Use of Computers and Networks (external link), UA Policy

Employee Email Policy (external link), UA Policy

Wireless Deployment and Maintenance (external link), UA Policy

Grant Sign-Off (pdf), FINAL, January 30, 2007

Administrative Access Policy (pdf), FINAL, January 30, 2007

• Minimum Security for Network Devices (external link)
• Password Contruction and Maintenance (external link)
• Anti-Virus Software (external link)
• Firewall Software (external link)
• Software Patching (external link)
• Spyware and Adware Prevention (external link)
• Minimum Security for Networked Devices Implementation (external link)

IT Purchase Policy, To Be Developed, AY 2008-2009

• SBSTech Order Process (pdf)

IT Vendors Policy (pdf), INTERIM, AY 2008-2009

• ABOR Information Security Guidelines (external link)

System Administration Policy, INTERIM, AY 2008-2009

• Access Control (external link)
• Data Facility Physical Security (external link)
• Server Security (external link)
• Guidelines for Generating a Disaster Recover Plan (external link)
• Disaster Preparation Information (external link)
• ABOR Information Security Guidelines (external link)
•  
•  

Guidelines, Practices, and Agreements

Service Level Agreement (pdf), FINAL, April 7, 2008

Server Criteria - Minimal Considerations (pdf), April 14, 2007

• Data Facility Physical Security (external link)
• Server Security (external link)
• ABOR Information Security Guidelines (external link)

Software Licensing Agreement (internal link)

Information Security Decision Tree (pdf), September 16, 2007

 

References

Export Controlled or Embargoed Counties, Entities and Persons (external link)

CCIT Security Incident Response Report (external link), February 19, 2007

• Incident Handling (external link)

SBS IT Advisory Committee Report (pdf), May 8, 2007

Final IT Organization - SBS College (jpg), December 2007