Educause Security Discussion mailing list archives
Confidential Information on Mail and Drives
From: Hiram Wong <hiram.wong () DOMAIL MARICOPA EDU>
Date: Wed, 3 Oct 2018 10:03:30 -0700
Greetings, I am looking for information on how your institution deals with confidential information on your official institution Mail and Drives. Some key points for me: 1. Is encrypted confidential information Ok to store for business use? 2. Do you utilize a DLP for Mail and Drive? 3. What is your remediation process if you find confidential information? Is it an automated process with emails generated to the employee/student? 4. Do you monitor the students or do you just provide them with verbiage in your usage policy that the institution is not liable for any confidential information a student may store on their student account? 5. As institutions of higher learning, you will have shares outside of your system. How closely monitored is that? I am guessing there are things I haven't thought of, so please feel free to enlighten me on other aspects! Thanks! Hiram -- [image: eSig Logo] Hiram Wong, CISA Information Security 2411 West 14th Street, Tempe AZ 85281 phone | 480-784-0519 email | @domail.maricopa.edu website | https://www.maricopa.edu [image: eSig facebook] <https://www.facebook.com/maricopa.edu>[image: eSig twitter] <https://twitter.com/mcccd>[image: eSig linkedin] <https://www.linkedin.com/company/maricopa-community-colleges>[image: eSig youtube] <https://www.youtube.com/user/themcccdEDU>[image: eSig instagram] <https://instagram.com/maricopacc/> [image: facebook] <http://www.facebook.com/maricopa.edu>
Current thread:
- Confidential Information on Mail and Drives Hiram Wong (Oct 03)