...
Title: Security Awareness and Training
Subject: Information Security
Policy No: ISO:2014:02
Applies: University-Wide
Issuing Authority: Senior Vice President for Information Resources and Technology and Chief Information Officer
Responsible Officer: Director of Information Security
Date Adopted: 06/01/2014
Last Revision: 03 04/2010/2019
Last Review: 03/20/2019
...
The Information Security Office (ISO) will provide and implement Information Security Awareness, Training and Education for all members of the Rowan Community and ensure ongoing maintenance and enhancements to the training and education content.
All members of the Rowan Community who have access to information assets must complete Security Awareness Training upon arrival at Rowan University.
All members of the Rowan Community who have access to information assets must annually complete refresher training.
Remedial training will be required for any user whose account has been reported to be compromised
Security Awareness Training content will be reviewed and updated annually by ISO.
ISO will provide an annual security awareness training report and monthly updates to the Information Technology Security Board (ITSB).
The manager is responsible for ensuring that each of their direct reports have completed the Security Awareness Training.
VI. POLICY COMPLIANCE
Individuals and departments who do not adhere to Violations of this policy may be subject the violator to disciplinary actions and/or the removal of system access, up to or including termination of employment or dismissal from a school, subject to applicable collective bargaining agreements and may subject the violator to penalties stipulated in applicable state and federal statutes. Sanctions shall be applied consistently to all violators regardless of job titles or level in the organization per the Acceptable Use Policy.
By Direction of the CIO:
Mira Lalovic-Hand,
SVP and Chief Information Officer
...