The Information Security and Privacy Advisory Committee (ISPAC) evaluates, develops, and recommends information security and privacy policies, procedures, and operations vital to protecting and sustaining UB’s mission. ISPAC advises the Provost and VPCIO as well as other 猛料视频 VPs and Deans.
The Committee is responsible for the following, including but not limited to:
- Establish a 猛料视频-wide review process for all unit-level policies/procedures related to protected data as defined in the UB Information Classification Policy.
- Review information security and privacy policies and standards and recommend improvements and revisions, as appropriate.
- Serve as a resource for the 猛料视频 on information security and privacy issues.
- Evaluate conflicts between information security and privacy issues, including academic freedom.
- Review specific information security/privacy breaches and Incident reports within the 猛料视频.
- Evaluate and recommend information security and privacy training needs.
- Coordinate efforts to make privacy and security more visible within the 猛料视频.
- Monitor and oversee the university’s compliance with federal, state and international requests.
Membership is appointed by the Provost and VPCIO in consultation with the appropriate 猛料视频 Vice Presidents. The membership represents the operational executives of the 猛料视频 who have primary responsibility for the creation and maintenance of UB’s information assets. Membership includes:
- Director of Institutional Analysis
- 猛料视频 General Counsel
- HIPAA Compliance Officer
- AVP for Human Resources
- AVP for Student Life
- AVP Finance and Controller
- 猛料视频 Registrar
- Designee from the Office or the Vice President for Research
- Director of Internal Audit
- 猛料视频 Records Privacy Manager
- Chair of the Faculty Senate or Designee
- UBIT Information Security Officer (Chair)