Advisory Structure

The Information Security Office relies on several groups to provide advice on setting security direction in three primary security areas: policy, technology and data custody.

Policy

The purpose of the Information Security Risk and Policy Advisory Group (ISRP) is to:

  • Advise on UB IT strategic and programmatic direction for Information Security matters;
  • Review and recommend IT Security policies, standards, initiatives and guidelines;
  • Review, prioritize, and make recommendations regarding IT Security projects;
  • Align IT Security strategies with University goals and priorities.

Technology

The purpose of the Information Security Technology Advisory Council (ISTAC) is to:

  • Advise on UB IT security technology direction;
  • Review and recommend IT policies, standards, initiatives and guidelines to the ISRP;
  • Review, prioritize, and make recommendations to the ISRP regarding IT security projects;
  • Align IT security technology plans with University goals and priorities.

Data Custody

The purpose of the Information Security Data Custodians Council (ISDCC) is to:

  • Advise on UB IS data management direction and issues;
  • Review and recommend policies, standards, initiatives and guidelines to the ISRP;
  • Review, prioritize, and make recommendations regarding IT projects affecting data management;
  • Align Information Security data management strategies with University goals and priority.

Contact the UBIT Help Center

Have a UBITName? You may also use the UBIT Help Center Online (login required).

(Required)
 
(Required)
(xxx) xxx-xxxx
(Required)
Use your @buffalo.edu email ONLY if you have access to it
 
(Required)