The UIPO is charged with:
- Information technology policy development, dissemination, and education
- Information usage/management policy development and education (in conjunction with data management committees)
- Review and analysis of existing policies for continued applicability and effectiveness
- Interpretation of current policy related to specific issues, situations and incidents
- Coordinating response to incidents of inappropriate use of information or information technology
- Interaction with computer security officers to develop and administer security education and awareness programs, and to assist with investigation of computer security incidents
- Administration of University computer accounts
UIPO provides these benefits Indiana University
- Function dedicated to developing and maintaining consistent IT Appropriate Use Policies (AUP)
- Education on common issues, appropriate use, and University IT policy
- Assistance in reviewing specific situations and analyzing and determining appropriate IT policy
- Assistance in coordinating appropriate technical investigation for violations of law or policy
- Assistance in packaging technical information for IU governance agencies, IU legal counsel, law enforcement, prosecutors, university administration, etc
- Common and consistent IT incident response
- Incident statistics collection and reporting
- Assistance in determining incident cost, valuable in determining appropriate safeguards
The authority of the UIPO has been established by a Resolution of the Trustees of Indiana University and confirmed by the Vice President for Information Technology and CIOs of Indiana University.
