Staff Responsibility for Information Security

The University has a policy that promotes good practice to minimise fraud or misuse of data from loss or inappropriate disclosure. All users must comply with information security guidelines, and if you are uncertain of any aspects of your responsibilities, please request guidance from your manager. Users should receive training on any specialist new systems that they are required to use.

All users have a responsibility to report incidents or suspected incidents. This should include unexpected behaviour of software which could indicate compromised workstations, applications or a malware infection. You are also reminded that confidentiality must be maintained, even after leaving the employment of the University.

The Staff Responsibility for Information Security Policy can be found at: http://eisf.shu.ac.uk/pdf/StaffResponsibilityforInformationSecurity.pdf