To ensure that UBC's confidential data and information systems are safe from a data breach, the university has Information Security Standards that govern the use and protection of university data and computing resources. As required by Policy #104, Acceptable Use and Security of UBC Electronic Information and Systems, all faculty and staff are responsible and accountable for following these standards.
These Information Security Standards are subject to periodic reviews to adapt to changing expectations and risks. The current review cycle began in March 2018.
Review Phase I
#1 Security Classification of UBC Electronic Information #2 Password and Passphrase Protection #3 Transmission and Sharing of UBC Electronic Information #5 Encryption Requirements #14 Vulnerability Management
Review Phase II
Beginning March 2019, the review team began working on draft amendments for the next set of standards based on community feedback. These will continue to be published in a series of iterations for comment by the campus community. We always invite feedback relating to the Information Security Standards.CLICK HERE TO PROVIDE FEEDBACK
Alternatively, you can email your feedback directly to firstname.lastname@example.org.
Feedback will be forwarded to the members of the review team, who will then make final amendments to the standards and forward them to the Chief Information Officer for approval. Comments submitted in the initial feedback gathering round are also available for your review.
If you have any questions or comments about this process, please send an email to email@example.com.