Mission Statement
Snow College’s Information Security Office (ISO) works with the campus community to
secure system and network resources, and protect the confidentiality of student, faculty,
and staff information. The ISO's comprehensive posture increases security and reduces
risk while securely enabling access to information for those who need it.
Overview
The Information Security Office oversees the Snow College community's efforts to protect
its computing and information assets and to comply with information-related laws,
regulations and policies. The office reports to the college's senior management through
the Vice President of Finance and Administrative Services.
Priorities
The ISO's approach to security is more proactive than reactive, although we give priority
response to incidents that have institution-level impact or that require college-wide
coordination. Our current focus is securing systems that affect a majority of the
college, including central administrative systems and the campus data network. The
ISO gives special priority to systems containing data classified as Personally Identifiable
Information (PII) as defined in the Information Security Policy.
The ISO Team works in partnership with the College, as well as external entities, to help ensure that Snow College is only exposed to acceptable risk within its educational, research, and community outreach missions. Our responsibilities include but are not limited to:
- Develop policies and procedures to secure information and prevent the loss of information that is critical to the operation of the College.
- Educate the College on security policies, procedures, and security strategies.
- Recommend network and security device configuration to prevent the compromise of information security and the misuse of College data, applications, networks and computer systems.
- Coordinate the remediation of operational vulnerabilities across network, system and processing environments.
- Implement and enforce baseline perimeter security practices endorsed for institutions by federal, state, and local government agencies, and national organizations.
- Identify and respond to incidents.
- Work with IT administrators to identify and contain security breaches, threats, and vulnerabilities.
- Providing education and training on security tools, technical vulnerabilities, trends, and approved best practices.
- Conduct risk assessments, evaluate systems, and business practices.
Contact information of the Information Security and Data Privacy Officer at Snow College:
Information Security and Data Privacy Officer: Paul Tew
Email:
ude.wons@ytiruceSofni
Phone: 435-283-7290
Campus Mail: Snow College
150 College Avenue
Ephraim, UT 84627