Data Security Representative Program

The purpose of the University Information Security Office’s (UISO) Data Security Representative (DSR) Program is to establish UISO liaisons with appropriate staff on the Main Campus and the Medical Center. This relationship between the UISO and the DSRs is expected to enhance the UISO’s efforts to communicate target messages to departments on both campuses. It will also serve as a channel for the UISO to educate key staff members on information security procedures and principles in order to strengthen data security practices across campus, and minimize instances of data loss and breaches.

The DSR program focuses on the following areas:

• Security issues that may impact everyday business processes
• How to appropriately manage and classify data
• Changes to IT policies and procedures
• New federal and state data breach policies that impact the university community
• Social media use in the workplace
• Data Steward program awareness and how the program impacts DSRs and their departments
• Concerns or questions that relate to UISO business processes and how the office can work better with the university community

Training

Module 1: Fundamentals of Information Security, the UISO, Legal and Regulatory Requirements . Click here to access the PDF version. (October 28, 2010) Quiz for Module 1

Module 2: Social Media and Risk Management. Click here to access the version with notes for the Social Media section only. (February 8, 2011) Quiz for Module 2

Supporting materials:

1) Maricopa Copa Community College risk assessment charts and presentation

2) Scenario 1 (Student Counseling and Psychological Service) (NOTE: This is not a true scenario.)

3) Scenario 2 (NOTE: This is not a true scenario.)

4) Secure Assessment Final Report

5) IT Risk Assessment Questionnaire

Module 3: Policy/Procedures and Emergency Management

Supporting materials:

Presentation on Emergency Management (This document is NetID-enabled.)