¶¶Òõ¶ÌÊÓƵ

Skip to Main Content

Information Security Information Resources & Technology

Support Page Content

CSU Information Security Policy and Standards

Sacramento State is committed to protecting the confidentiality, integrity, and availability of information assets owned, leased, or entrusted to the University. Therefore, we hereby adopt both the ¶¶Òõ¶ÌÊÓƵ Information Security Policies and Standards and the Sacramento State Supplemental Information Security Policies.

Policies vs. Standards vs. Procedures

  • Policies are formal statements created by the university that reflect our mission, which in this case is the protection of Sacramento State's information and assets.
  • Standards are rules or actions that must be done to ensure our policies are being followed. They indicate expected behavior and must be enforced.
  • Procedures are detailed step by step instructions on how to implement or adhere to the standards.
  • Guidelines are recommended practices that are based on industry-standard practices.

CSU Information Security Policy and Standards

Policies and standards are organized in the following, clickable index:

Policy Section Supplemental Policies Procedures, Guidelines, Others
     
  Sacramento State Data Classification and Protection Standard

Sacramento State Vulnerability Management Standard

Sacramento State Vulnerability Management Supplemental Standard for Workstations

Sacramento State Vulnerability Exception Procedure

Sacramento State Vulnerability Exception Request Form

Sacramento State Quarantine Procedures 
  Sacramento State Data Classification and Protection Standard



FERPA(Student Records) Privacy 		Sacramento State Data Classification and Protection Standard


Sacramento State Data Privacy Policy and Standards

Sacramento State Campus Privacy Notice

Sacramento State Data Security & Records Retention

Sacramento State Data Reporting Governance
  Sacramento State Access Control Standard – Identify Verification

Sacramento State Access Control Standard – Authentication
Sacramento State Level 1 Systems Access Review Template
 
   
Sacramento State Campus Device Standards

Sacramento State Workstation Security Standards

Sacramento State Common Workstation Standards

Sacramento State High Risk Workstation Standards

Sacramento State Student Device Standards

Mobile Device Security

Sacramento State Technology Procurement Request
  Mobile Device Security
  Sacramento State Vulnerability Management Standard

Sacramento State Vulnerability Management Supplemental Standard for Workstations

Sacramento State Vulnerability Exception Procedure

Sacramento State Vulnerability Exception Request Form

Sacramento State Quarantine Procedures

Sacramento State Campus Web & Mobile Development Security Guideline
 
Information Security Requirements - Supplemental Provisions
  Sacramento State Data Classification and Protection Standard

Sacramento State Business Continuity and Disaster Recovery Plan


Debit/Credit Card Payment Policy 6340.00
Sacramento State Data Privacy Policy and Standards

A01-Sacramento State Annual PCI Assessment Procedure

A02-Sacramento State Annual Credit Card Acceptance Acknowledgement

A03-Sacramento State User Access Inventory - Template

A04-Sacramento State Device Inventory - Template

A05 - Sacramento State Credit Card Business Process Inventory

02-Sacramento State Credit Card Acceptance Procedures

03-Sacramento State Credit Card Channel Request