Reaching Others University at Buffalo - The State University of New York
Skip to Content

Advisory Structure

The Information Security Office relies on several groups to provide advice on setting security direction in three primary security areas: policy, technology and data custody.

Policy

The purpose of the Information Security Risk and Policy Advisory Group (ISRP) is to:

  • Advise on UB IT strategic and programmatic direction for Information Security matters;
  • Review and recommend IT Security policies, standards, initiatives and guidelines;
  • Review, prioritize, and make recommendations regarding IT Security projects;
  • Align IT Security strategies with University goals and priorities.

Technology

The purpose of the Information Security Technology Advisory Council (ISTAC) is to:

  • Advise on UB IT security technology direction;
  • Review and recommend IT policies, standards, initiatives and guidelines to the ISRP;
  • Review, prioritize, and make recommendations to the ISRP regarding IT security projects;
  • Align IT security technology plans with University goals and priorities.

Data Custody

The purpose of the Information Security Data Custodians Council (ISDCC) is to:

  • Advise on UB IS data management direction and issues;
  • Review and recommend policies, standards, initiatives and guidelines to the ISRP;
  • Review, prioritize, and make recommendations regarding IT projects affecting data management;
  • Align Information Security data management strategies with University goals and priority.

Did This Page Answer Your Question?

(Required)
 
Email, UBITName or phone number
(Required)
Enter both words below, separated by a space. If either word appears unclear, click 'Get a new challenge' to receive two new words.