Instructional Academic Computing Committee

Minutes

August 9, 2007
Meeting in AH-1120 at 1 p.m.
John Ross and James Frazee, Co-Chairs

Announcements
John Ross announced that anyone who has not picked up their Macromedia products from Dan Steward should do so.

Vulnerability Management Plan (VMP) - John Denune
John Denune gave a overview of the SDSU Vulnerability Management Plan. The draft document can be viewed at http://security.sdsu.edu/policy/VMP-1.2.pdf. A few highlights of the VMP are:

• VMP represents the minumum level of security compliance
• Defines the scope of confidential documents, breaking them into three levels
• Pay close attention to wording of MUST vs. SHOULD
• Exceptions must be documented and approved
• Plan will be reviewed and updated every year and is expected to be a multi-year approach
• Sets standards for IT audits

PLEASE NOTE: The statements found on the IACC Home Page are for informational purposes only. While every effort is made to ensure that this information is up to date and accurate, official information can be found in the University publications.

Last modified on August 10, 2007
This page is maintained by the ROHAN webmaster