Information Security and Compliance at Michigan Tech

The Information Security and Compliance Office (ISCO) is responsible for coordinating and ensuring Information Security across the University. Our mission is to provide a secure computing environment to ensure the confidentiality, availability, and integrity of information technology resources needed to support the University’s educational and research objectives.

To meet these objectives, the ISCO facilitates the development of security and privacy requirements and policies and oversees the implementation of strategic information security initiatives for the University. Specifically, the ISO:

  • Provides guidance and direction to the University community to assure compliance with security standards and appropriate policies
  • Monitors and informs the University about information security trends and their potential impacts
  • Provides security education and training for faculty, staff and students
  • Promotes a safe and secure information technology operational environment

Mandate

The University must be proactively aware of and prepared to comply with a wide variety of federal and state laws, regulations, and University policies with respect to information protection and privacy.

In order to ensure the University attains a posture of compliance with respect to law, regulation and University Policy 2.1009 Information Security Compliance, the President created the Information Security Board of Review.

This Board, in conjunction with the ISCO, is responsible for developing policies, procedures, and standards, developing training and informational materials; and assessing and ensuring the University’s compliance with applicable laws, regulations, and University policies, procedures, and standards regarding information security and privacy.