Title | Description | Ratified |
Information Security Risk Management Standard (PDF) | This standard covers all University information resources including systems, data, and services. This standard is applicable to all Appalachian State University employees, students, and affiliates. It defines the specific minimum technical security practices needed to protect different types of University information resources based on the degree of risk that may be realized should these resources be compromised, stolen, degraded, or destroyed. | 3/2020 |
IT Standard on IT Standards and Policies (PDF) | Defines the process for developing, reviewing, approving and maintaining IT standards and policies. Serves as a template for new standards. | 3/2019 |
Identity & Access Management Standard (PDF) | Defines requirements that must be met consistently and securely identify, authenticate, and authorize users of University IT services. | 3/2020 |
Structured Cabling Standard (PDF) | Provides a standard specification for all University facilities requiring cabling installation | 6/2019 |
Encryption Standard (PDF) | Defines the requirements necessary for securely managing encryption technologies in order to provide acceptable levels of protection for institutional data and systems. | 4/2019 |
IT Acquisition Standard (PDF) | Explains the steps to acquire information technology, including IT provided freely by an external group. | 4/2019 |
Data Management Standard (PDF) | Outlines the responsibilities and requirements needed to consistently protect the value and security of University data. | 5/2016 |
Enterprise Password Standard (PDF) | Defines the requirements associated with the management of passwords utilized for managing, accessing, and supporting University enterprise information systems. | 5/2016 |
Secure Data Handling Standard (PDF) | Provides guidance on which campus technologies can be used to securely transmit or store different types of University data. | 8/2017 |