Policies
SDSU Information Security Plan
SDSU IS Plan (Currently undergoing revision)
SDSU Information Security Policies and Practices
Vulnerability Management Standard
Security and Configuration of Information Systems Standard
Minimal Endpoint Security Baseline Standard
(Section still in development)
CSU Information Security Policies
ICSUAM 8000.00: Introduction and Scope
ICSUAM 8005.00: Policy Management
ICSUAM 8010.00: Establishing an Information Security Program
ICSUAM 8015.00: Organizing Information Security
ICSUAM 8020.00: Information Security Risk Management
ICSUAM 8025.00: Privacy of Personal Information
ICSUAM 8030.00: Personnel Information Security
ICSUAM 8035.00: Information Security Awareness and Training
ICSUAM 8040.00: Managing Third Parties
ICSUAM 8045.00: Information Technology Security
ICSUAM 8050.00: Configuration Management
ICSUAM 8055.00: Change Control
ICSUAM 8060.00: Access Control
ICSUAM 8065.00: Information Asset Management
ICSUAM 8070.00: Information Systems Acquisition, Development and Maintenance
ICSUAM 8075.00: Information Security Incident Management
ICSUAM 8080.00: Physical Security
ICSUAM 8085.00: Business Continuity and Disaster Recovery
ICSUAM 8095.00: Policy Enforcement
ICSUAM 8100.00: Electronic and Digital Signatures