Here you will find links to University of Waterloo policies, procedures, and statements relating to information security.
Policies & Executive Statements
- Policy 46 -- Information Management
- Information security for research
- Statement on electronic business
- Statement on security of Waterloo computing and network resources
Procedures
- Information security breach response procedure
- Reporting a cybersecurity issue
- Vulnerability management escalation procedure
Standards
- Password standards
- Technical security standards for e-commerce applications
- Security standards for desktops and laptops
- Security standards for networked peripheral devices (print/scan/fax)
- SSH standards
Draft security standards
- These draft security standards are a work in progress and have not yet been approved by IST (authentication required)
Guidelines
- Protect personal privacy on social media platforms
- Cloud security guidelines
- Guidelines for secure data exchange: Choosing information transmission methods based on the security classification
- Electronic media disposal guidelines
- Prioritized Information Security Guidance
- Working from home securely