CSU Information Security

Policies and Standards

This page provides links to Information Security Policies and Standards as defined by the CSU and Cal State East Bay.

The CSU Information Security policy provides direction for managing and protecting the confidentiality, integrity and availability of CSU information assets. In addition, the policy defines the organizational scope of the CSU information Security Policy and Standards. This index will take you to the CSU Policy Topic by clicking on the topic name. While in the CSU Policy you can navigate to all relevant Supplement Policy or Standards by clicking the corresponding link.

Information Security Policy and Standards links
CSU Policy	CSU East Bay Policy
Introduction Scope Roles and Responsibilities	CSUEB Supplemental Policy Campus IS Policy Directive Policy Management Supplemental
ISO Domain 5: Information Security Policy
ISO Domain 6: Organization of Information Security Policy
ISO Domain 7: Human Resource Security Policy Personnel Information Security Activities Information Security Awareness and Training Activities
ISO Domain 8: Asset Management Policy	CSU Data Classification Levels
ISO Domain 9: Access Control Policy	CSUEB Password Policy
ISO Domain 10: Cryptography Policy Electronic Signatures Digital Signatures
ISO Domain 11: Physical and Environmental Security Policy
ISO Domain 12: Operations Security Policy Configuration Management Change Control
ISO Domain 13: Communications Security Policy
ISO Domain 14: Systems Acquisition, Development and Maintenance Policy
ISO Domain 15: Supplier Relationships Policy
ISO Domain 16: Information Security Incident Management Policy
ISO Domain 17: Information Security Aspects of Business Continuity Policy
ISO Domain 18: Compliance Policy
Enforcement
Exceptions
Responsible Use Policy

Who should I contact if I have more questions?

Please contact the Information Security Office at: iso@csueastbay.edu