SecureCarolina will greatly improve the state of information security and privacy at the University of South Carolina, by involving all University personnel to enact bold improvements in University information systems and processes.
SecureCarolina will achieve its goals by continuing development of the USC Information Security Program, which will ...
- Continually assess and manage information security risk at the University, through security operations and auditing processes.
- Implement a plan for information security and privacy training for University personnel.
USC IT Security
USC Internal Audit
Scope of Assessments
- business processes
| Establish new security training and certification standards
Establish awareness within IT environments regarding university policy framework
Implement procedure for improved monitoring and scanning of critical systems
Complete phase II of server and computer hardware security
| Establish process for periodic refinement of Local Security and Privacy Procedures
Establish process for review of information security and privacy policies, standards, and procedures
Develop strategy for identifying significant IT Risk in the university Annual Audit Plan
Establish strategy to implement centralized identity and access management
Establish strategy to support information security and privacy regulatory requirements in research