The ECSU Security Standards originate in the International Standards Organization (ISO) 27002 Controls for information security. ISO 27002 contains internationally recognized best practices for information security.
The Security Standards outline conditions necessary to adequately assure compliance
with ECSU Trustee Policy 700.2.7 by University employees. All university departments must
comply with the standards by following their adapted procedures that meet or exceed
the minimum requirements established by the Security Standards. Compliance is verified
through institutional and third party assessments and audits.
ACCESS CONTROL (PDF)