The Information Security program at the University of Toronto (U of T) is continually working with the community to better protect the University and its people against security risks. Most recently, the University’s Information Security Council has developed the Information Security Standard (the Standard) to provide a set of baseline security measures to protect our data and information systems based on the associated data classification. The standard is customized to U of T’s specific environment.
“The Information Security Standard consists of the measures we take to protect our systems and data based on risk,” said Deyves Fonseca, Associate Director, Information Security Operations. “Keeping U of T’s data and computing environment safe and secure is a team effort. Therefore, it is critical that everyone at U of T understands the Information Security Standard and applies it to protect our data and information systems,” he added.
Applying the Information Security Standard
Protecting our data and information systems is a shared responsibility — every person in the U of T community plays a role in applying the Information Security Standard guidelines.
Here is how you can use the standard based on your role:
- Data users: Learn how to securely handle the data you work with.
- Decision makers: Make strategic decisions about protecting data and systems within divisions and administrative or academic organizational units.
- Teams managing information systems: Implement security safeguards, configure systems and build processes to reduce risk.
Help secure U of T’s data and information systems
- Identify the classification and the risk associated with the data you handle.
- Learn more about the Information Security Standard and how to apply it.
For more information, visit the ISEA website.