Professional Documents
Culture Documents
Responsibilities
Information Security Mission
Protect the assets of the Medical School through secure design, operations and
management governance
Align work and work products within UMMS-relevant laws, regulations and
requirements
Apply a risk-based approach to our security design, guidance and decisions
Continuously safeguard against current and potential threats
The importance of a proactive Information Security team is to provide the framework for
keeping sensitive data confidential and available for authorized use while building effective
relationships with our business and IT partners.
Policy Development
Security Awareness
Internal Risk Assessments
Third-party Risk Assessments
Risk Remediation Support
Secure SDLC
Record retention schedule management
SOC 2 Facilitation
Threat protection & monitoring
Malware detection (ePO)
Threat correlation & reporting
Incident response
Computer forensics
Vulnerability management
Application scanning
Penetration testing
Campus & industry threat collaboration
Security training administration