The Information Security and Policy Office (ISPO) reports to the CIO and promotes implementation and use of secure information technology systems, services, and programs for the entire university, including the hospital. Educational materials for technology providers and security awareness programs for users are key components. The security office consults on issues of regulatory compliance, develops and shares industry best practices for security, leads critical information security services, coordinates security incident response and resolution, and facilitates development of IT policies for campus.
IT policies, standards, and guidelines are available on the ISPO website.
