Snow College’s Information Security Office (ISO) works with the campus community to
secure system and network resources, and protect the confidentiality of student, faculty,
and staff information. The ISO's comprehensive posture increases security and reduces
risk while securely enabling access to information for those who need it.
The Information Security Office oversees the Snow College community's efforts to protect its computing and information assets and to comply with information-related laws, regulations and policies. The office reports to the college's senior management through the Vice President of Finance and Administrative Services.
The ISO's approach to security is more proactive than reactive, although we give priority response to incidents that have institution-level impact or that require college-wide coordination. Our current focus is securing systems that affect a majority of the college, including central administrative systems and the campus data network. The ISO gives special priority to systems containing data classified as Personally Identifiable Information (PII) as defined in the Information Security Policy.
The ISO Team works in partnership with the College, as well as external entities, to help ensure that Snow College is only exposed to acceptable risk within its educational, research, and community outreach missions. Our responsibilities include but are not limited to:
- Develop policies and procedures to secure information and prevent the loss of information that is critical to the operation of the College.
- Educate the College on security policies, procedures, and security strategies.
- Recommend network and security device configuration to prevent the compromise of information security and the misuse of College data, applications, networks and computer systems.
- Coordinate the remediation of operational vulnerabilities across network, system and processing environments.
- Implement and enforce baseline perimeter security practices endorsed for institutions by federal, state, and local government agencies, and national organizations.
- Identify and respond to incidents.
- Work with IT administrators to identify and contain security breaches, threats, and vulnerabilities.
- Providing education and training on security tools, technical vulnerabilities, trends, and approved best practices.
- Conduct risk assessments, evaluate systems, and business practices.
Contact information of the Information Security Officer at Snow College:
Information Security Officer: Paul Tew