IT Policies Hierarchy.
The ITaP IT Networks and Security (ITNS) group facilitates the development of University information security policies
and consults on information security compliance activities under federal, state, and local law.
This document details current University information security policy documents and the standards and guidelines related to
each policy document. For more information about the information security policy process at Purdue, please visit:
http://www.purdue.edu/securepurdue/bestPractices/draftITPolicies.cfm
Information Security Policy Document Definitions
Information Security Policy Documents Hierarchy
Delegation of Administrative Authority and Responsibility For Information Assurance, Security and Awareness (V.1.1)
- No related Standards at this time.
Authentication and Authorization Policy (V.1.2)
Privacy for Electronic Information (V.1.3
- No related Standards at this time.
- No related Guidelines at this time.
Incident Response (V.1.4)
- No related Standards at this time.
- No related Guidelines at this time.
Proper Disposal of Electronic Media (V.1.5) Interim
- No related Standards at this time.
- Related Guidelines:
Remote Access to IT Resources (V.1.6) Interim
- No related Standards at this time.
- No related Guidelines at this time.
HIPAA Covered System and Application Logging (V.1.7) Interim
- No related Standards at this time.
- No related Guidelines at this time.
Electronic Mail (V.3.1)
- No related Standards at this time.
- No related Guidelines at this time.
IT Resource Acceptable Use Policy (V.4.1)
- Related Standards:
- No related Guidelines at this time.
Social Security Number Policy (V.5.1)
- No related Standards at this time.
No related Guidelines at this time.
Data Security and Access Policy (C-34)
- No related Standards at this time.
- No related Guidelines at this time.
Policy for Purdue Pages on the World Wide Web (C-42)
- No related Standards at this time.
- No related Guidelines at this time.
Dated: January 22, 2008
