Skip to main content

MP-1 Media Protection Policy and Procedures

Description

The university develops, disseminates, and periodically reviews/updates formal, documented procedures to facilitate the implementation of the Media Protection policy and associated Media Protection controls

Applicability

  • This control applies to the university Chief Information Security Officer (CISO).

Implementation

  • 1 - The university CISO, in coordination with Information Resource owners, shall develop, document, and disseminate to units a set of controls that addresses the Media Protection of information resources. These controls should include purpose, scope, roles, responsibilities, management commitment, coordination among university entities, and compliance
  • 2 - The CISO shall review and update the Media Protection controls as necessary.