Objectives and Deliverables

Objectives and Deliverables

  • Updated CMVM-specific Information Security guidance (O)
  • 'BYOD' Information Security checklists for mobile devices - Android and iOS (D) 
  • New CMVM-specific guidance on accessing University data on mobile devices (D) [special CMVM consideration = clinical data]
  • New CMVM-specific onboarding/leavers' guidance (accounts. devices, ongoing data access rights...) (D)
  • Statistics (updated periodically) on uptake of UoE Information Security Essentials across CMVM.  

Benefits

  • improved awareness and adoption in practice of good information security behaviour
  • reducing the risk to CMVM/UoE of impacts of information security breaches
  • potential to adopt existing university-wide guidance where a good fit exists within CMVM
  • potential for cross-College collaboration / knowledge sharing / shaping best practice (e.g. asset management, IT sustainability, improved identity management processes)

Success Criteria

Within CMVM -

  • Increased uptake of online Information Security Essentials course across EMS (three deaneries), the R(D)SVS and all of CMVM's research institutes and centres (https://edin.ac/2GDpUFn - baseline data needed)*
  • Uptake within CMVM of UoE 'LastPass' password management software

*[UoE-wide - CISO/InfoSec team currently considering a UoE-wide approach to Information Security reporting at corporate level].  

Project Milestones

 

Project Info

Project
MVM Information Security Compliance
Code
MVM533
Programme
MVM Business Administration (MVMBUS)
Management Office
ISG PMO
Project Manager
Jonathan Henderson
Project Sponsor
Mark Hay
Current Stage
Initiate
Status
Suspended
Project Classification
Grow
Start Date
06-Jun-2022
Planning Date
n/a
Delivery Date
n/a
Close Date
n/a
Overall Priority
Normal
Category
Discretionary

Documentation

Plan