Main Nav

Good morning friends,

What is your policy on sending confidential documents via email? Do you use gmail? Do you allow such? Do you require the document to be encrypted before sending? 

Respectfully,

Mark Scott
VP of Innovation and Technology, CTO
Freed-Hardeman University | 158 E. Main St. | Henderson, TN 38340
731-989-6002 | mscott@fhu.edu | Twitter: http://twitter.com/m_scott

Cyber Security Awareness - FHU Online Safety
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

Comments

Mark,

Anything confidential or containing protected information is encrypted at 256 AES -- it's a free firmware upgrade to our Barracuda Antispam.

_____________________
Steve Swartz
Chief Information Officer
Fitchburg State University
978-665-4444





The policy as stated (although hard to enforce) is that sensitive information should only reside on secure network drives and not on any physical device and should not be transmitted via email.   Special attention is given to PIRN (Personal Information Requiring Notification - i.e., SSNs, CCNs, driver's license, passport #, etc.)

To transmit sensitive information securely we provide a web-based application for that purpose - LeapFile.

Thanks,
Harry Pontiff
Information Security Officer
Macalester College

Harry Pontiff, Ph.D., GISF
Information Security Officer
Macalester College
1600 Grand Avenue - Hum 308
St. Paul, MN 55105
Phone: (651) 696-6826
Fax: (651) 696-6778

This email may contain information which is privileged, confidential, or protected. If you are not the intended recipient, note that any disclosure, copying, distribution, or use of the contents of this message is prohibited. If you have received this email in error, please notify the sender and delete this email.


Hi Scott,

Our policy states that such information must be sent with encryption. We provide Accellion as a service to our community.

Best,

Jonathan See
Chief Information Officer
Pepperdine University
310.506.6256

@SeeJonathan

Our policy also specifies that such information must be encrypted; we've chosen Biscom Delivery Server as the system with which to do it.

We actually have two of them. The first is used for "ad hoc" emails both inside the university (from one department to another, often replacing paper-based transfers of the information) and from inside the university to outside (e.g., to vendors). The second is used specifically for sending nightly/weekly reports from Banner (and other applications) to the people who should receive them. This is a new implementation, and has been quite well received.

 --Dave


--

DAVID A. CURRY, CISSP • DIRECTOR OF INFORMATION SECURITY

THE NEW SCHOOL • 55 W. 13TH STREET • NEW YORK, NY 10011

+1 212 229-5300 x4728 • david.curry@newschool.edu