Policies, Procedures, and Guidelines

Policies

The following policies are maintained on the University Policies website at  http://www.cpp.edu/~policies/university/information-technology/

• Appropriate Use Policy for Information Technology
• World Wide Web Policy
• Mobile Communication Device Policy

Procedures

• Procedures for Maintaining Faculty Computers 
• Cal Poly Pomona Payment Card Industry Policy & Procedure (PDF)
• Campus purchases of electronic and information technology (E&IT)
• Procedure for Requesting Employee Reimbursement for Mobile Communication Device (PDF)
• Network Standard Compliance Procedure (PDF)

Practice

• Information Security Training (2018) (PDF)
• Network Segmentation (2018) (PDF)
• Web Accessibility Monitoring Standard - working draft (2019) (PDF) 
• Web Development Security Scanning (2018) (PDF)

Standards

• Account Management guidelines (PDF)
• Baseline Server Standard (2019) (PDF)
• Baseline Workstation Standard (2018) (PDF)
• CPP Information Security Program 2009 (PDF)
• Confidentiality
  • Faculty Confidentiality Statement
  • Staff Confidentiality Statement
• Data Classification & Handling Standard (2019) (working draft) (PDF)
• Email as Preferred Communication
  • Students
  • Faculty and Staff
• Encryption (revised 2019) (PDF)
• Identity and Access Management Standard (PDF)
• Local Administrator Access (2018) (PDF) 
• Password Standard (revised 2018) (PDF)
• Privileged Access Standard (PDF)
• Remote Access Standard (PDF)
• Security Log Management Standard (PDF)
• Web Application Code Development Standard (PDF)
• University Computer Account Retention Standard (PDF)

Forms

• Mobile Communication Device Reimbursement Authorization Form (PDF)

Guidelines

• Disposition of Sensitive Information Guidelines (PDF)
• Network Monitoring Guidelines 2010 (PDF)
• Server and Network Security Standard and Guidelines (PDF)
• Vulnerability Management Guideline (2019) (PDF)
• Web Governance Guidelines (Docx)

FAQ

• Cell Phone Policy FAQ (PDF)