Standard History

Christopher Newport Information Security Policies and Standards

GROUP	TYPE	NAME	RESPONSIBILITY	LAST UPDATE/REVIEW
CNU POLICY	POLICY	6010 Acceptable Use of Computing Resources Policy	CNU Leadership	October 2025
CNU POLICY	POLICY	6015 Unified Data Policy	CNU Leadership	July 2025
CNU POLICY	POLICY	6035 Information Technology Change Management Policy	CNU Leadership	October 2025
CNU POLICY	POLICY	6040 Virtual Private Network Policy	CNU Leadership	November 2025
CNU POLICY	POLICY	6045 Information System Security Policy	CNU Leadership	November 2025
ACCOUNT MANAGEMENT	STANDARD	Account Management Standard	Information Security	January 2026
ACCOUNT MANAGEMENT	STANDARD	University Password Standard	Information Security	December 2025
ACCOUNT MANAGEMENT	STANDARD	University Acceptable Use Standard	Information Security	December 2025
ACCOUNT MANAGEMENT	STANDARD	University Email Standard	Information Security	December 2025
DATA GOVERNANCE	STANDARD	Information Security Standard Maintenance Standard	Information Security	December 2025
DATA GOVERNANCE	STANDARD	Data Access Standard	Information Security	December 2025
DATA GOVERNANCE	STANDARD	Data Classification Standard	Information Security	December 2025
DATA GOVERNANCE	STANDARD	Data Protection Standard	Information Security	December 2025
DATA GOVERNANCE	STANDARD	Data Sharing Standard	Information Security	December 2025
DATA GOVERNANCE	STANDARD	University Artificial Intelligence Standard	Information Security	April 2026
ENTERPRISE SERVICES	STANDARD	Information System Security Standard	Information Security	DRAFT ^{(Under review)}
DATA GOVERNANCE	STANDARD	Configuration Management Standard	Information Security	DRAFT ^{(Under review)}
DATA GOVERNANCE SYSTEMS & DESKTOP	STANDARD	Encryption Standard	Information Security	December 2025
DISASTER RECOVERY	STANDARD	ITS Disaster Recovery Plan (DRP)	CNU Leadership	June 2024
ENTERPRISE SERVICES	STANDARD	Information Technology Physical and Environmental Standard	Enterprise Services	December 2025
ENTERPRISE SERVICES	STANDARD	Software Development Standard	Enterprise Services	January 2023 ^{(Under review)}
GLBA	STANDARD	GLBA Information Security Program	Information Security	June 2024 ^{(Update in progress)}
INCIDENT RESPONSE	STANDARD	Security Incident Response Plan	CNU Leadership	June 2024
NETWORK	STANDARD	Network Firewall Standard	Infrastructure	June 2024 ^{(Under review)}
NETWORK	STANDARD	Remote Access & VPN Standard	Infrastructure	January 2026
RISK MANAGEMENT	STANDARD	Risk Assessment Standard	Information Security	June 2024
RISK MANAGEMENT	STANDARD	Third Party Vendor Risk Management Standard	Information Security	June 2024 ^{(Under review)}
SYSTEMS & DESKTOP	STANDARD	Information Security Monitoring & Logging Standard	Information Security	April 2026
SYSTEMS & DESKTOP	STANDARD	Systems and Software Patching Standard	Information Security	April 2026
SYSTEMS & DESKTOP	STANDARD	Vulnerability Assessment & Management Standard	Information Security	June 2024
TRAINING	STANDARD	Security Awareness Training Standard	Information Security	December 2025
TRAINING	STANDARD	Role Based Security Training Standard	Information Security	June 2024 ^{(Recommend withdrawal)}
TRAVEL	STANDARD	Information Security Foreign Travel Standard	Information Security	January 2026
SYSTEMS & DESKTOP	STANDARD	Media Protection Standard	Information Security	January 2026
RISK MANAGEMENT	STANDARD	Business Continuity Plan (BCP)	Information Security	DRAFT
INCIDENT RESPONSE	PROCEDURE	Security Incident Response Plan Guidelines & Procedures	CNU Leadership	June 2024
DISASTER RECOVERY	PROCEDURE	Banner Disaster Recovery	Systems & Database Operations	June 2024
ACCOUNT MANAGEMENT	GUIDELINE	Local Administrative Privileges	Information Security	June 2024
RISK MANAGEMENT	PROCEDURE	Risk Assessment Guidelines & Procedures	Information Security	June 2024
RISK MANAGEMENT	PROCEDURE	Third Party Vendor Risk Management Procedures	Information Security	June 2024
ACCOUNT MANAGEMENT	PROCEDURE	Account Management	Information Security	June 2024
ACCOUNT MANAGEMENT	PROCEDURE	VPN Account Management	Information Security	June 2024
ACCOUNT MANAGEMENT	PROCEDURE	Firewall Account Management	Infrastructure	June 2024
ACCOUNT MANAGEMENT	PROCEDURE	Banner Account Management	Systems & Database Operations	June 2023
SYSTEMS & DESKTOP	GUIDELINE	ITS Systems & Application Hardening Guidelines	Systems & Database Operations	March 2020
SYSTEMS & DESKTOP	PROCEDURE	ITS System Logging Procedures	Systems & Database Operations	February 2023