University of Washington
Administrative Policy Statements
March 1, 2004
2.1
Go to Section:
00 — Organization & Communications
10 — Environment, Health, Safety & Security
20 — Academic Matters
30 — Fiscal Management
40 — Personnel
50 — Services
60 — Equipment Inventory
70 — Travel
UW Information Systems Security
Table of Contents
1.
Purpose
2.
Applicability
3.
Compliance
4.
Authorities
a.
State and Federal Statutes and Regulations
b.
Other Primary Authorities (NCQA, JCAHO, HCFA, NAIC)
c.
Common Criteria
d.
Additional Information Sources Regarding Policy Formulation
5.
Definitions
6.
Roles and Responsibilities
a.
UW Privacy Assurance and Systems Security Council (PASS Council)
b.
UW Privacy Officer
c.
Computing and Communications Security Services
d.
UW Medicine IT Services Security Infrastructure Team
e.
Systems Owners and Operators
f.
Data Custodians
g.
Users
7.
Policy
a.
General Statement of Policy
b.
Monitoring User Accounts, Files, and Access
c.
Electronic Data and Records Management
d.
Access Controls
e.
Systems and Network Security
f.
Physical Security
g.
Personnel Security Measures
h.
Policy Enforcement
i.
Policy Maintenance
Top of Page
