General Responsibilities of the Data Custodianġ. The Data Owner is also responsible for reviewing who has been given access twice per year to ensure accuracy. These rules must be documented in a concise manner. For example, a simple rule may be that all students are permitted access to their own transcripts or all staff members are permitted access to their own health benefits information. Access must be granted based on the principles of least privilege as well as separation of duties. A Data Owner may decide to review and authorize each access request individually or may define a set of rules that determine who is eligible for access based on business function, support role, etc. Determine appropriate criteria for obtaining access to information assets.Ī Data Owner is accountable for who has access to information assets within their functional areas. This information is considered publicly available and has no requirement for confidentiality, integrity, or availability.ģ. TCNJ recognizes three classifications of information assets:Ĭollege data protected specifically by federal or state law such as FERPA, HIPPA, PCI, Sarbanes-Oxley, Gramm-Leach-Bliley, contractual agreements requiring confidentiality, integrity, or availability considerations, or specific student or employee data.Ĭollege data not otherwise classified as Category I but is available for open public records act (OPRA) requests.Ĭollege data not otherwise classified as Category I or Category II. Assign an appropriate classification to information assets. Ensure compliance with TCNJ policies and all regulatory requirements as they relate to the information asset.Ģ. General Responsibilities of the Data Ownerġ. For the purpose of information security, a Data User is any employee, contractor or third-party provider who is authorized by the Data Owner to access information assets. This is a critical role and it must be executed in accordance with the access guidelines developed by the Data Owner.ĭata Users also have a critical role to protect and maintain TCNJ information systems and data. Usually, this person has the administrator/admin, sysadmin/sysadm, sa, or root account or equivalent level of access. In most cases, the Data Custodian is not the Data Owner.Ī system administrator or Data Custodian is a person who has technical control over an information asset dataset. Some examples of Data Owners include the Registrar and student data the Treasurer and financial data the VP of Human Resources and employee data. This is usually the senior most officer in a division. Virtru Encrypted Email Solution – Installation GuideĪ Data Owner has administrative control and has been officially designated as accountable for a specific information asset dataset.Security Awareness Training Instructions.Can create and edit labels in Settings > Label Management. Can add or remove existing Social Media Management users from teams (though only Admins can invite brand-new users to Social Media Management).Can access and manage the settings for their assigned team(s).When the Team Leader add-on is provided, the user will retain the existing permissions for their assigned user role, but also gain the following organization-level permissions: a Customer Service team employee.Ī View-only user may require an overview of the team’s content, conversations, and performance without having the need to create content or interact with customers.Īny Editor, Content Creator, Moderator, and View-only user can also be provided the Team Leader add-on to gain additional permissions to manage settings for their assigned team(s). Cannot view or manage team settings or configure teams, channels, users, and templates (unless the Team Leader add-on is provided).Ī Content Creator could be a user who "lives" in the social sphere and knows what topics are current, but is not experienced or familiar with the organization's social communication guidelines and strategy.Ī typical Moderator is often a user who only deals with inquiries from customers, e.g.Can access channels and data only from their assigned team(s). Must be assigned to at least one team.Can create, edit, and delete labels in Settings > Label Management.Īn Editor is often a user responsible for the interactions with customers and is familiar with the organization's social communication guidelines.Can add, refresh, and delete ad accounts.Administrators can adjust a user's role for each individual channel by following the steps described in our Managing Teams article.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |