Policies, Procedures & Standards >

ITSS Security & Computer Usage Policies

Many of the Medical College of Georgia's financial, administrative and research systems are accessible through the campus network. As such, they are vulnerable to security breaches that may compromise confidential information and expose the university to losses and other risks. At MCG, security is critical to the physical network, computer operating systems, and application programs and each area offers its own set of security issues and risks.

Confidentiality and privacy, access, accountability, authentication, availability, and Information Technology system and network maintenance are components of a comprehensive security plan. This plan identifies key concerns and issues faced by the University community at the application, host, and network level, and strives for a balance between the University's desire to promote and enhance the free exchange of ideas and its need for security of critical information and systems.

Using a risk-based approach for the selection and application of appropriate safeguards, the following policies seek to provide cost-effective protection for the universities resources as well as for the University's reputation and legal position.

• Electronic Data Backup Policy
• Information Systems Security and Computer Usage Policy
• Password Protection Policy
• Remote Access Policy
• Server Security Policy
• Workstation Configuration Policy