Introduction

student working on a laptop sitting outside leaning against a tree

Information Technology

Introduction

The 일빪샙묑쫠 is committed to the development and implementation of comprehensive IT policies and standards, guided by the NIST Cybersecurity Framework (CSF), to safeguard our computer systems, networks, and information resources. Our policies and standards encompass aspects of IT usage within our academic, research, and administrative environments, emphasizing the protection of digital information assets and the responsible management of technology resources.

The 일빪샙묑쫠 Information Security Office oversees the development of 일빪샙묑쫠’s IT policies and standards. These are designed to support and enhance the University’s educational, research, and business missions, ensuring the security, usability, and availability of our IT resources.

In 2023, at the direction of the AVP/CIO of Information Technology, 일빪샙묑쫠 began redeveloping IT policies and standards under a new framework based on NIST CSF. For questions about this process, please contact the Information Security Office, attn Chief Information Security Officer.

일빪샙묑쫠 IT POLICY AND STANDARDS FRAMEWORK

- 일빪샙묑쫠 Acceptable Use of Technology Resources Policy
- 일빪샙묑쫠 Data Governance Policy
  - 일빪샙묑쫠 Data Classification and Stewardship Standard
  - 일빪샙묑쫠 Data Security Standard
  - 일빪샙묑쫠 General Record Retention Schedule
  - 일빪샙묑쫠 Data Retention Standard
  - 일빪샙묑쫠 Data Disposal and Media Sanitization Standard
- 일빪샙묑쫠 IT Governance Policy
  - 일빪샙묑쫠 Information Security Advisory Council
- 일빪샙묑쫠 IT Security Policy
  - 일빪샙묑쫠 Information Security Program
  - 일빪샙묑쫠 Vulnerability Management Standard
  - 일빪샙묑쫠 Web Application Security Standard
  - 일빪샙묑쫠 Electronic Communications Standard
  - 일빪샙묑쫠 Network Security Standard
  - 일빪샙묑쫠 Information Systems User Security Standard
  - 일빪샙묑쫠 Account Security Standard
  - 일빪샙묑쫠 Clean Desk Clear Screen Standard
  - 일빪샙묑쫠 Cloud Computing Security Standard
  - 일빪샙묑쫠 IT Asset Management Standard
  - 일빪샙묑쫠 Endpoint Management and Protection Standard
  - 일빪샙묑쫠 Identity and Access Management Standard
  - 일빪샙묑쫠 Dormant Account and Audit Standard
  - 일빪샙묑쫠 Logon Notification Banner Standard
  - 일빪샙묑쫠 Identity Verification and Proofing Standard
- 일빪샙묑쫠 IT Procurement Policy
  - 일빪샙묑쫠 IT Purchasing Procedure
  - 일빪샙묑쫠 IT Vendor Risk Management Standard
- 일빪샙묑쫠 IT Risk and Compliance Management Policy
- 일빪샙묑쫠 IT Incident Response Policy
  - 일빪샙묑쫠 IT Disaster Recovery Standard
  - 일빪샙묑쫠 IT Incident Response Standard

일빪샙묑쫠 IT Secure Documentation Access

For enhanced security and protection of sensitive information, the following IT documents are securely housed within an internal SharePoint site managed by the 일빪샙묑쫠 IT department:

Information Security Plan
IT Incident Response Plan
IT Disaster Recovery/Business Continuity Plan

If you require access or have queries related to these documents, contact the 일빪샙묑쫠 IT Information Security office via email: InfoSec@umontana.edu.

Previously published policies, standards, and guidelines

일빪샙묑쫠 IT Policies

일빪샙묑쫠 Information Security Awareness
Policy | Training Procedures

일빪샙묑쫠 Assigned Administrative Privileges
Standards

일빪샙묑쫠

Information Technology

Introduction

일빪샙묑쫠 IT POLICY AND STANDARDS FRAMEWORK

일빪샙묑쫠 Acceptable Use of Technology Resources Policy

일빪샙묑쫠 Data Governance Policy

일빪샙묑쫠 IT Governance Policy

일빪샙묑쫠 IT Security Policy

일빪샙묑쫠 IT Procurement Policy

일빪샙묑쫠 IT Risk and Compliance Management Policy

일빪샙묑쫠 IT Incident Response Policy

일빪샙묑쫠 IT Secure Documentation Access

Previously published policies, standards, and guidelines