The Security and Compliance unit seeks to enhance the university’s information technology infrastructure and operations by implementing and enforcing industry best policies, regulations and procedures to protect and secure critical university systems and data. Areas of service and responsibility include:

• Security Standards and Compliance
  • Computer Security Incident Handling and Mitigation
  • Security Log Management
  • Enterprise Antivirus protection
  • Access Controls to SYSNEWS tools, Email, Shared Volumes and Archives
  • Special ID authorization
  • Compliance services for PCI-DSS, DMCA, FERPA and HIPAA
  • Security Awareness and Computer Security training
  • Processing of E-discovery and Litigation Hold requests
  • SSL Certificate Management
• Identity and Access Management (IAM)
  • Identity Management
  • Authentication, Authorization and Auditing
  • Account provisioning and password management
  • Application Security/SAR
• Organizational Resilience
  • Evaluates and develops a comprehensive Organizational Resilience Program
  • Addresses the needs of the University in terms of people, process, and technology
  • Provides the framework for the Business Continuity Plan
  • Creates and maintains standardized project management processes
  • Provides tools to facilitate the detailed planning/tracking of all complex and significant projects
• Software License Management
  • Analyzes campus software needs, interests and directions
  • Creates a cooperative and fair software purchasing partnership with various campus partners
  • Collaborates with the UNC-GA on university system-wide software licenses