Information Security – Best Practices

Missouri State University-West Plains is committed to protecting information entrusted to its care.

Use this checklist to safeguard sensitive information and practice safe computing.

Physical

Ο    Use caution when answering requests for information about students (FERPA, HIPAA)
Ο    Immediately report to your supervisor any fraudulent attempt to obtain information
Ο    Keep working papers containing sensitive information out of sight
Ο    Shield your computer screen from prying eyes
Ο    Store sensitive information in locked cabinets
Ο    Delete or shred information when it’s no longer needed
Ο    Lock the door(s) when leaving your office
Ο    Report lost or stolen keys immediately

Electronic

Ο    Use strong passwords
Ο    Keep passwords and PINs private
Ο    Lock your computer when stepping away from your computer
Ο    Use a locking screen-saver to shield information on your screen after ten minutes of idle time
Ο    Store spreadsheets, databases, and documents containing sensitive information in a secure folder on the server
       instead of on your desktop computer
Ο    Avoid downloading sensitive information to your laptop computer, thumb drive, or other mobile device
Ο    Use encrypted email to transmit sensitive information
Ο    Learn to recognize phishing scams and fraudulent emails
Ο    Forward suspect email to reportspam@missouristate.edu
Ο    Annually review the list of those who have been granted access to your department’s information systems
      (Banner, WebPress, etc.)

At work and at home

Ο    Make sure your computer’s firewall is on
Ο    Keep your computer’s operating system up-to-date
Ο    Use caution when downloading software from an unknown source
Ο    Use up-to-date anti-virus software
Ο    Set the virus scan to run on a regular basis
Ο    Use up-to-date anti-spyware