ANR IT's cybersecurity program is driven by the UC-wide BFB-IS-3 Electronic Information Security policy.
Unit Information Security Leads
The Unit Information Security Lead (UISL) for each unit supports staff by ensuring devices and information stay secure. UISLs collaborate closely with Unit Heads and the Chief Information Security Officer (CISO).
Units without a dedicated UISL should contact ANR IT for cybersecurity guidance.
UISL responsibilities include:
- Vendor risk assessments — serves as a first pass for software requests and helps request a vendor risk assessment (VRA) when needed
- Inventory — tracks hardware assets, software used by the unit, and locations of sensitive information
- Risk acceptance — provides context and guidance when filling out a Risk Acceptance Form
- Physical information security — designs and executes procedures for handling, storing, and disposing of assets such as laptops
- Reviewing access rights — checks folder permissions and access to shared resources such as email inboxes
- Patching — ensures servers are kept up to date
Phishing
If you receive a phishing email, forward it to ANR IT so we can verify and take action if needed. Read more on the Phishing page.
Report an Incident
To report a security incident, contact ANR IT directly.