Overview: Workstation Security Policy of Baghdad University

Uploaded by

Omar Ayoub

0% found this document useful (0 votes)

5 views3 pages

Workstation Security Policy

Original Title

Workstation Security Policy

Copyright

Available Formats

DOCX, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Workstation Security Policy

Copyright:

Available Formats

Download as DOCX, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

5 views3 pages

Overview: Workstation Security Policy of Baghdad University

Uploaded by

Omar Ayoub

Workstation Security Policy

Copyright:

Available Formats

Download as DOCX, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 3

Search inside document

Workstation Security Policy of Baghdad University

1. Overview
Today's desktop workstations must be configured and used in a secure manner, for two reasons.
First, it is likely that some information housed on that computer is of a sensitive, confidential, or
proprietary nature. Therefore, only authorized individuals should have access. Second, the
integrity of the system (operating system, application programs, and data files) is critical.

2. Purpose
The purpose of this policy is to provide guidance for workstation security for Baghdad
University workstations in order to ensure the security of information on the workstation and
information the workstation may have access to. Additionally, the policy provides guidance to
ensure the requirements of the HIPAA Security Rule Workstation Security Standard 164.310(c)
are met.

3. Scope
This policy applies to all Baghdad University employees, contractors, workforce members,
vendors and agents with a Baghdad University-owned or personal-workstation connected to the
Baghdad University network.

4. Policy Statements
Appropriate measures must be taken when using workstations to ensure the confidentiality,
integrity and availability of sensitive information, including protected health information (PHI)
and that access to sensitive information is restricted to authorized users.
3.1 Workforce members using workstations shall consider the sensitivity of the information,
including protected health information (PHI) that may be accessed and minimize the possibility
of unauthorized access.
3.2 Baghdad University will implement physical and technical safeguards for all workstations
that access electronic protected health information to restrict access to authorized users.
3.3 Appropriate measures include:
Restricting physical access to workstations to only authorized personnel.
Securing workstations (screen lock or logout) prior to leaving area to prevent
unauthorized access.
Enabling a password-protected screen saver with a short timeout period to ensure that
workstations that were left unsecured will be protected. The password must comply with
Baghdad University Password Policy.
Complying with all applicable password policies and procedures. See Baghdad
University Password Policy.
Page 1

Ensuring workstations are used for authorized business purposes only.

Never installing unauthorized software on workstations.
Storing all sensitive information, including protected health information (PHI) on
network servers
Keeping food and drink away from workstations in order to avoid accidental spills.
Securing laptops that contain sensitive information by using cable locks or locking
laptops up in drawers or cabinets.
Complying with the Portable Workstation Encryption Policy
Complying with the Baseline Workstation Configuration Standard
Installing privacy screen filters or using other physical barriers to alleviate exposing data.
Ensuring workstations are left on but logged off in order to facilitate after-hours updates.
Exit running applications and close open documents
Ensuring that all workstations use a surge protector (not just a power strip) or a UPS
(battery backup).
If wireless network access is used, ensure access is secure by following the Wireless
Communication policy

5. Enforcement
Any person found to be in violation of this policy will be subject to
appropriate disciplinary action as defined by current University policy or
contract.
Exceptions: Any exception to the policy must be approved by the Infosec team in advance.

5 Related Standards, Policies and Processes

Password Policy
Portable Workstation Encryption Policy
Wireless Communication policy
Workstation Configuration Standard

Page 2

6 Revision History
Date of
Change

Responsible

Summary of Change

Mar 2015

BU Policy Team

Updated and converted to new format.

Page 3

Network Documentation A Complete Guide - 2020 Edition
From Everand
Network Documentation A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
ProjeQtOr A Complete Guide - 2020 Edition
From Everand
ProjeQtOr A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
IT Security Policy Template HIPAA Workstation Security Policy OSIBeyond
Document3 pages
IT Security Policy Template HIPAA Workstation Security Policy OSIBeyond
Sanda Nechifor
No ratings yet
IT Security Policy For Shantel
Document13 pages
IT Security Policy For Shantel
nompilo monica nkala
No ratings yet
Wireless Communication Policy-4
Document3 pages
Wireless Communication Policy-4
Silver
No ratings yet
Overview: Software Installation Policy
Document2 pages
Overview: Software Installation Policy
Sanda Nechifor
50% (2)
Policy and Procedure Buncombe County Information Technology
Document5 pages
Policy and Procedure Buncombe County Information Technology
Bobby Coggins
No ratings yet
Automatically Forwarded Email Policy: 1. Overview
Document2 pages
Automatically Forwarded Email Policy: 1. Overview
Abdullah Amer
No ratings yet
Acceptable Use Policy: 1. Overview
Document7 pages
Acceptable Use Policy: 1. Overview
Richter Belmont
No ratings yet
JD Computer Protection Policy
Document2 pages
JD Computer Protection Policy
Ulises Isaac Santana
No ratings yet
IT Policy
Document37 pages
IT Policy
Yogesh Joshi
100% (1)
Cyber Security Policy
Document3 pages
Cyber Security Policy
svyasjaydip1990
No ratings yet
Email Policy 2
Document3 pages
Email Policy 2
Silver
No ratings yet
Server Malware Protection Policy
Document3 pages
Server Malware Protection Policy
Rudi Hartono
No ratings yet
It-Pr Policies 07-12-17
Document24 pages
It-Pr Policies 07-12-17
azeem dilawar
No ratings yet
Intranet and Internet Security Policy - Sample 2
Document7 pages
Intranet and Internet Security Policy - Sample 2
Dennis Bacay
100% (1)
Policy On User Account Creation, Modification, and Deletion - 1
Document2 pages
Policy On User Account Creation, Modification, and Deletion - 1
Rob Mar
100% (1)
Portable IT Equipment Policy
Document3 pages
Portable IT Equipment Policy
Aiddie Ghazlan
No ratings yet
Acceptable Use Policy
Document10 pages
Acceptable Use Policy
Amro Faisal
No ratings yet
HR Policy - Cellular
Document4 pages
HR Policy - Cellular
vignesh R
No ratings yet
Practical Connection Assignment
Document2 pages
Practical Connection Assignment
राजकुमार खनाल
100% (1)
Policy Statement
Document2 pages
Policy Statement
United Certification
No ratings yet
Internet Email Usage Policy
Document4 pages
Internet Email Usage Policy
Srikesh GS
No ratings yet
Date: Name: Address
Document6 pages
Date: Name: Address
Vifa
No ratings yet
Example Mobile Device Security Policy
Document3 pages
Example Mobile Device Security Policy
Omar Ayoub
No ratings yet
EndUser Backup Policy
Document3 pages
EndUser Backup Policy
aami6
No ratings yet
SA Security Policy Procedures 125S
Document7 pages
SA Security Policy Procedures 125S
monikajayapal
No ratings yet
00 - CASABLANCA - Supervisor System and Network Specifications - EnG Ver
Document18 pages
00 - CASABLANCA - Supervisor System and Network Specifications - EnG Ver
Linh Tinh
No ratings yet
Policy 8.4 Building Access and Control
Document4 pages
Policy 8.4 Building Access and Control
Sultan Batoor
No ratings yet
Sample Acceptable Email Use Policy
Document2 pages
Sample Acceptable Email Use Policy
Ashok
No ratings yet
Bizmanualz Construction Management Policies and Procedures Sample
Document5 pages
Bizmanualz Construction Management Policies and Procedures Sample
Shahala
No ratings yet
Chapter Four: Information Technology Deployment Risks
Document72 pages
Chapter Four: Information Technology Deployment Risks
chiiinen
No ratings yet
SOP - TWM - Problem Management - v1.1
Document12 pages
SOP - TWM - Problem Management - v1.1
Abdul Hafiz
No ratings yet
Example Back Up Policy
Document11 pages
Example Back Up Policy
Gayathri Sharma
No ratings yet
Exam
Document8 pages
Exam
sasas
No ratings yet
Information Technology Procedure and Policy Manual: Verified by Approved by
Document14 pages
Information Technology Procedure and Policy Manual: Verified by Approved by
Sarras Info
No ratings yet
Logfile 01 2011 Synopsis Annex11 Computer Is Ed Systems
Document11 pages
Logfile 01 2011 Synopsis Annex11 Computer Is Ed Systems
Mohamed Sallam
No ratings yet
6 BCP-DCP
Document19 pages
6 BCP-DCP
Writer Course
No ratings yet
Medronic - DS&P - On-Off Boarding Process Document - v.4.5
Document20 pages
Medronic - DS&P - On-Off Boarding Process Document - v.4.5
Chintan Bhankharia
No ratings yet
ICT Repair Sop
Document3 pages
ICT Repair Sop
desterious Imoli
No ratings yet
Change Request and Business Requirement Document: Date: 29-June-2016
Document13 pages
Change Request and Business Requirement Document: Date: 29-June-2016
jogender kumar
No ratings yet
CERTIKIT - Standard Licence Terms - 1st January 2015
Document6 pages
CERTIKIT - Standard Licence Terms - 1st January 2015
Natalia Dwi Arianti
No ratings yet
Auditing in CIS Environment DISCUSSION 13
Document7 pages
Auditing in CIS Environment DISCUSSION 13
Yo Han Song
No ratings yet
Cyber Security Policy Template
Document3 pages
Cyber Security Policy Template
Jacob Yeboa
No ratings yet
ITT Provision of Web Hosting Services GMB DOM 57-09-21
Document36 pages
ITT Provision of Web Hosting Services GMB DOM 57-09-21
Flexy Beats
No ratings yet
Record Retention Policy
Document4 pages
Record Retention Policy
montalvoarts
No ratings yet
9 Must-Have IT SOP's When Implementing A Regulated Electronic System
Document3 pages
9 Must-Have IT SOP's When Implementing A Regulated Electronic System
pram29c
No ratings yet
Software Installation Policy
Document2 pages
Software Installation Policy
LinuxPower
No ratings yet
1 Information Security Audit and Analysis Introduction 02-08-2021 (02 Aug 2021) Material - I - 02 Aug 2021 - 01 - Introduction
Document37 pages
1 Information Security Audit and Analysis Introduction 02-08-2021 (02 Aug 2021) Material - I - 02 Aug 2021 - 01 - Introduction
PIYUSH RAJ GUPTA
No ratings yet
It Policy
Document4 pages
It Policy
Roen Abe
No ratings yet
Information Security Controls: at The End of The Module, The Students Are Expected To
Document8 pages
Information Security Controls: at The End of The Module, The Students Are Expected To
Erika Llabres
No ratings yet
DMZ Lab Security Policy-2
Document4 pages
DMZ Lab Security Policy-2
Silver
No ratings yet
Information Backup and Restore Policy
Document6 pages
Information Backup and Restore Policy
vijeti
No ratings yet
Quality System Manual
Document20 pages
Quality System Manual
bhupendra
No ratings yet
Data Center Physical Security Best Practices Checklist PDF
Document3 pages
Data Center Physical Security Best Practices Checklist PDF
aL Doom
No ratings yet
Information Classification and Management Policy Template
Document6 pages
Information Classification and Management Policy Template
Ahmed Alhassar
No ratings yet
National Bank of Ethiopia VPN Policy: V P N (VPN) P
Document42 pages
National Bank of Ethiopia VPN Policy: V P N (VPN) P
Birhan
No ratings yet
Evision - AMC Services
Document2 pages
Evision - AMC Services
Ripunjay Mishra
No ratings yet
Latihan 1: Sesuaikan Control Objective Berikut Dengan Nomor Klausul Pada Iso 27001
Document1 page
Latihan 1: Sesuaikan Control Objective Berikut Dengan Nomor Klausul Pada Iso 27001
hendranugz
No ratings yet
RI Remote Access Standard
Document3 pages
RI Remote Access Standard
homenetwork
No ratings yet
Basic Microwave Propagation
Document35 pages
Basic Microwave Propagation
Omar Ayoub
No ratings yet
Information Security: Ali Ayoub Younis
Document57 pages
Information Security: Ali Ayoub Younis
Omar Ayoub
No ratings yet
Sonet SDH DWDM
Document35 pages
Sonet SDH DWDM
Omar Ayoub
100% (1)
01 - Radiation Detection and Measurement CH 03 - 3
Document17 pages
01 - Radiation Detection and Measurement CH 03 - 3
Sheikh Shoaib
No ratings yet
Information Security: Ali Ayoub Younis
Document57 pages
Information Security: Ali Ayoub Younis
Omar Ayoub
No ratings yet
LAMBDA OMNICOLL Fraction Collector and Sampler Manual
Document24 pages
LAMBDA OMNICOLL Fraction Collector and Sampler Manual
Omar Ayoub
No ratings yet
Supercritical
Document55 pages
Supercritical
Omar Ayoub
No ratings yet
Anti Virus Protection Policy
Document3 pages
Anti Virus Protection Policy
Omar Ayoub
No ratings yet
K100 Eb
Document7 pages
K100 Eb
Omar Ayoub
No ratings yet
Fullsoldercomic 20110409
Document8 pages
Fullsoldercomic 20110409
api-208336511
No ratings yet
Least Square Method
Document14 pages
Least Square Method
Omar Ayoub
100% (2)
Amp 300 FM Mosfet Replacement: Can Cause A Short Circuit Between Different Board Layers. Reconnect Also The 2 GND
Document2 pages
Amp 300 FM Mosfet Replacement: Can Cause A Short Circuit Between Different Board Layers. Reconnect Also The 2 GND
Omar Ayoub
No ratings yet
Example Mobile Device Security Policy
Document3 pages
Example Mobile Device Security Policy
Omar Ayoub
No ratings yet
Overview: Removable Media Policy of Baghdad University
Document2 pages
Overview: Removable Media Policy of Baghdad University
Omar Ayoub
No ratings yet
Protection Profile For Application Software
Document74 pages
Protection Profile For Application Software
Omar Ayoub
No ratings yet
Adrenaline
Document14 pages
Adrenaline
Omar Ayoub
No ratings yet
Information Security Mutual Trust
Document25 pages
Information Security Mutual Trust
Omar Ayoub
No ratings yet
Security Risk Analysis & Requirements Engineering
Document15 pages
Security Risk Analysis & Requirements Engineering
Omar Ayoub
100% (1)
Slides John Mitchell
Document40 pages
Slides John Mitchell
Naresh Munreja
No ratings yet
CompTIA Security+ (Student Edition) PDF
Document615 pages
CompTIA Security+ (Student Edition) PDF
Ad Hi Ie
100% (1)
Chapter 11 Security
Document53 pages
Chapter 11 Security
Paul Alexis Cruz
No ratings yet
Knet Cissp 10
Document847 pages
Knet Cissp 10
Ali Kayacan
No ratings yet
Kill Team ITC Rankings
Document1 page
Kill Team ITC Rankings
Skintone Photography
No ratings yet
Security Part 1 Auditing OS & N
Document59 pages
Security Part 1 Auditing OS & N
Saud Alnooh
No ratings yet
Disabling MS Advanced Threat Protection and Advanced Threat Analytics
Document76 pages
Disabling MS Advanced Threat Protection and Advanced Threat Analytics
Saadat Rehman
No ratings yet
DT249-4 Assignment 2
Document1 page
DT249-4 Assignment 2
John
No ratings yet
Metasploit Cheatsheet - HackersOnlineClub
Document4 pages
Metasploit Cheatsheet - HackersOnlineClub
Patel Jitendra
No ratings yet
Using Symmetric and Asymmetric Cryptography
Document4 pages
Using Symmetric and Asymmetric Cryptography
Michelle Henriques
No ratings yet
Data Integrity & Security
Document3 pages
Data Integrity & Security
Reshma Wawhal
No ratings yet
How To Detect Ransomware With FileAudit - Enterprise Network Security Blog From ISDecisions
Document4 pages
How To Detect Ransomware With FileAudit - Enterprise Network Security Blog From ISDecisions
Ajay Dhamija
No ratings yet
The Evolution of Cybersecurity - Sandbox Quiz
Document2 pages
The Evolution of Cybersecurity - Sandbox Quiz
chhun
50% (4)
Cissp Information PDF
Document4 pages
Cissp Information PDF
Zaheer Bk
No ratings yet
Defradar - Supplier GDPR Assessment
Document2 pages
Defradar - Supplier GDPR Assessment
Jakobović Domagoj
No ratings yet
Password-Less Authentication in Rails
Document11 pages
Password-Less Authentication in Rails
Jordano Moscoso
No ratings yet
The Difference Between A Virus, Worm and Trojan Horse?
Document3 pages
The Difference Between A Virus, Worm and Trojan Horse?
joshidpal
No ratings yet
KMS Functional Reqs v1 0
Document64 pages
KMS Functional Reqs v1 0
amul_mutha
No ratings yet
Final Advisory18-02 6.26.18
Document8 pages
Final Advisory18-02 6.26.18
mark john batingal
No ratings yet
Three Design Patterns For Secure Distributed Systems Alan H. Karp Kevin Smathers
Document38 pages
Three Design Patterns For Secure Distributed Systems Alan H. Karp Kevin Smathers
Kristin Pate
No ratings yet
1429985793
Document2 pages
1429985793
Marlon Rodriguez
100% (1)
Hash Function and Digital Signature
Document21 pages
Hash Function and Digital Signature
Eswin Angel
No ratings yet
Cybercrime: Fraud and Financial Crimes
Document4 pages
Cybercrime: Fraud and Financial Crimes
hardik
No ratings yet
PKI Security
Document64 pages
PKI Security
Vivien Di
100% (1)
Client SSL - Taking Action On Emails (When SMTP and Pop3 Are Using SSL) Using Application Firewall and DPI SSL (Client SSL)
Document6 pages
Client SSL - Taking Action On Emails (When SMTP and Pop3 Are Using SSL) Using Application Firewall and DPI SSL (Client SSL)
Ankit Shakya
No ratings yet
Microsoft Online Services Global Criminal Compliance Handbook
Document22 pages
Microsoft Online Services Global Criminal Compliance Handbook
esq21
No ratings yet
Ch15Crypto6e Userauth Nemo2
Document43 pages
Ch15Crypto6e Userauth Nemo2
highway2prakas
No ratings yet
Komandat e Perdoruesit Ne Linux
Document4 pages
Komandat e Perdoruesit Ne Linux
Lulzim Bruçaj
No ratings yet
TBW Ad-Pki Guide Us MJ
Document51 pages
TBW Ad-Pki Guide Us MJ
gchani
No ratings yet
Security Issues in Ecommerce
Document12 pages
Security Issues in Ecommerce
DBS MANFEST
No ratings yet