Succeed with University of Plymouth

Share
- Twitter
- Facebook
- LinkedIn
- Google+
- Email

Information security

Information and resources to help combat security threats and keep the University's and your data safe

Information security

It's vital to both students and staff that the University is able to ensure confidentiality, integrity and availability of its information. Everyone has a responsibility to access information and systems in an acceptable manner, maintain the confidentiality of information and keep our assets secure.

Information security at Plymouth University concerns the implementation of processes and good practice which are designed to protect print and electronic materials; specific consideration should be given to any other form of confidential, private and sensitive information or data from unauthorised access, (mis)use, disclosure, destruction, modification, or disruption.

Good information security is a combination of physical and technical measures, together with appropriate policies, procedures and guidance. Threats to information systems range from physical, such as theft of hardware, through to human factors such as social engineering by phishing emails or human error. All of these result in a disruption to services as well as unnecessary risk and cost.

Why is Information Security important?

Information is one of the most important assets to an organisation and all information is valuable and should be appropriately protected. Security is a combination of systems, operational procedures and internal controls to ensure integrity, confidentiality and availability of data to support the operation of the organisation.

'Why is Information Security important' video created by Security Fresh.

Study information security at Plymouth University

Cyber security is now widely recognised as an international priority, with hacking, malicious code, and data theft being just three of the many reasons why it's vital in the design, development and implementation of today’s IT systems. Our courses deliver a view of security threats and solutions, alongside an essential background in wider IT topics.

Find out more about our courses:

Get help and advice

Follow us

Report a weakness

Report an incident

Make a request

Share your ideas

For any enquiries related to information security, please contact the Enterprise Security Team.

Self Service: Portal

Email: infosecurity@plymouth.ac.uk

Phone: +44 1752 588 588

If you have discovered a vulnerability or weakness within our network, please report it to the Enterprise Security Team.

Phone: +44 1752 588 588

If you want to report an information security incident, please contact the Enterprise Security Team.

Phone: +44 1752 588 588

Make a Freedom of information request.

Make a subject access request.

If you have any ideas or suggestions regarding our information security, please share them with us!

Email: infosecurity@plymouth.ac.uk

Information security awareness

General awareness

Information security training

Information Security Online E training, available to all members of the University.

Data Protection training, by Emma Wainman and Paul Ferrier.

PCI DSS training, available to all staff members of the University.

The Phishing Line. Please take a look and familiarise yourself with the sort of thing that has been happening so you don’t get caught out, either at work or at home!

Information security classification

The Information Security Classification Policy sets a framework for preserving the confidentiality, integrity and availability of information assets based on their level of sensitivity and value to the University. These documents are designed to provide guidance on how to classify information assets properly as well as how to handle and store them appropriately.

Information security policies

The Information Security Policy sets out appropriate measures through which the University will facilitate the secure and reliable flow of information, both within the University and in external communications. These policies are designed to provide guidance on the acceptable use of University systems and the security controls in place to keep the information assets secure.

Information security guidelines