IT Standards

Questions or comments regarding Information Technology Services Standards should be referred to Kate Rhodes, Chief Information Security Officer, at kprhodes@odu.edu.

# Title Last Revised
Security Organization and Governance
01.1.0 Technology Policy Development and Maintenance Standard November 2021
01.2.0 IT Security Roles and Responsibilities November 2021
Personal Privacy and Data Security
02.1.0 Internet Privacy Standard November 2021
02.2.0 Workplace Device Technologies Standard November 2021
02.3.0 Data Administration and Classification Standard November 2021
02.4.0 IT Asset Control Standard December 2021
02.5.0 Encryption Usage and Key Escrow Standard January 2022
02.6.0 Remote Access and Virtual Private Network Standard December 2019
02.8.0 Cloud Computing and Storage Standard December 2020
02.9.0 Mobile Device Management Standard November 2021
02.10.0 Digital and Media Copyright Compliance Standard November 2021
02.11.0 Credential Management December 2020
02.12.0 Privacy and Confidentiality of University Information Standard September 2024
02.13.0 Electronically Stored Information Release Standard September 2024
Security Awareness and Training
03.1.0 IT Security Awareness Program Guidelines December 2020
Identity Management
04.1.0 MIDAS Identity Management Standard October 2021
04.2.0 Account Management Standard December 2021
04.3.0 Desktop Administrative Rights Access Standard December 2022
Incident Management
05.1.0 IT Security Incident Handling Standard October 2021
05.2.0 Data Breach Notification Standard October 2021
05.4.0 Virus & Malicious Code Protection Standard November 2021
Operations & Operational Security
06.1.0 IT Facilities Security Standard January 2023
06.2.0 Email Retention Standard December 2020
06.3.0 Project Management Standard November 2021
06.5.0 Server Management Standard December 2019
06.6.0 Security Monitoring and Logging Standard November 2021
06.7.0 Site License Program Standard October 2021
06.8.0 IT Infrastructure, Architecture, and Ongoing Operations Standard January 2022
06.9.0 Data Center Operations Standard January 2023
06.10.0 IT System and Data Backup and Restoration January 2022
06.11.0 System Change Management December 2023
06.12.0 Network Management Standard December 2020
06.13.0 Desktop Management December 2022
06.14.0 Access Determination and Control Standard January 2022
Contingency Planning
07.1.0 Business Impact Analysis Standard November 2021
07.2.0 Business Continuity and Disaster Recovery Plan Standard January 2023
Security Assessments and Reviews
08.1.0 Risk Assessment Standard December 2020
  08.1.1 Software Decision Analysis and System Risk Assessment Guideline July 2019
08.2.0 IT Security Program Review November 2021
Compliance
09.1.0 Acceptable Use Standard January 2022
09.2.0 Accessibility Standard November 2021
09.3.0 IT Audit Standard November 2021
Policy Enforcement
10.1.0 Disciplinary Action Standard November 2021
General and Miscellaneous Standards
11.1.0 Copy and Duplication Device Leasing and Purchasing Standard October 2021
11.2.0 Student Email Standard December 2021
11.3.0 Classroom Technology Standard November 2021
11.4.0 Electronic Mass Mailing Standard December 2021
11.5.0 University-Wide Announcements System Standard December 2021
11.6.0 University Source Document Imaging Standard November 2021