Secure Carolina

Project Goals
  1. Review and update university level information security and privacy policy, standards, and procedures.
  2. Examine the feasibility of designating a Data Trustee and Steward for Personal Data.
  3. Discover, assess, and address Social Security numbers and payment card numbers in storage on all university IT devices.
  4. Establish new training and certification standards for those who administer or access university information assets
  5. Develop a process to discover, assess, and address existing information security risks in all university information assets.
  6. Implement proactive scanning and monitoring systems and processes, to discover risks and active threats to university information assets.
  7. Ensure the integration of appropriate information security and privacy provisions and processes in all UTS IT processes, projects, systems, and staff.
  8. Ensure the integration of appropriate information security and privacy provisions and processes in all university IT acquisitions and development efforts.
  9. Ensure the integration of appropriate information security and privacy provisions and processes in the university’s enterprise IT projects, systems, and staff (e.g. OneCarolina, Banner, Mainframe).
  10. Assist university business and academic units in establishing local security and privacy procedures compliant with university level procedures.
  11. Establish processes for periodic review of information security and privacy policies, standards, and procedures.
  12. Establish processes for periodic assessment and/or auditing of university units for compliance with established information security and privacy procedures.
  13. Develop a strategy for implementing a centralized university system for Identity and Access Management (IAM).
  14. Develop a strategy for supporting information security and privacy regulatory requirements in research.

 

Columbia, SC 29208 803-777-1246
© University of South Carolina Board of Trustees