Policy and Document Repository
This page contains links to approved Information Technology (IT) policies, standard operating procedures and guidance documents, as well as IT forms and templates. All documents posted on this page are applicable to The University of Texas Health Science Center at Houston, although some are oriented more towards IT support staff than users. Documents are grouped by type and listed by document number. They are also content-searchable in X-Files.
Templates
IT templates are used to draft IT policy, IT standard operating procedure (SOP), or IT guidance documents. The review and approval of drafted policies, SOPs and guidance documents must follow the IT Policy and SOP Approval Process (ITSOP-001). Contact itcompliance@uth.tmc.edu for assistance.
ITPOL-000 IT Policy Template
ITSOP-000 IT SOP Template
ITGD-000 IT Guidance Document Template
Policies
IT policies contain specific standards that address use, development and support of information resources, including security standards and compliance with laws and regulations. IT policies are applicable across the university, and may require action and/or compliance on the part of faculty, staff, students and recognized associates who have access to university-owned data and/or computer resources, including contractors and vendors. IT policies are approved by the Chief Information Officer.
ITPOL-001 Portable Storage Device Policy
ITPOL-002 Password Policy
ITPOL-003 Acceptable Encryption Policy
ITPOL-004 Access Control Policy
ITPOL-005 Change Management Policy
ITPOL-006 Host Configuration Policy
ITPOL-007 Laptop Security Policy
ITPOL-008 Network Configuration Policy
ITPOL-009 Network Security Policy
ITPOL-010 Physical Security Policy
ITPOL-011 Spam Email Policy
ITPOL-012 Windows Server Directory Policy
ITPOL-013 Firewall Secure Zone Policy
ITPOL-014 PCI Digital Security Standards
ITPOL-015 Wireless Network Security Standards
ITPOL-016 Information Security Exception Request Policy
Standard Operating Procedures (SOPs)
IT SOPs contain a step by step process for performing a specified function. IT SOPs are approved by the Chief Information Officer.
ITSOP-001 IT Policy and SOP Approval Process
ITSOP-002 Password Reset SOP
ITSOP-003 Password Escrow SOP
ITSOP-004 Enable Disk Encryption for MAC OS X
ITSOP-005 Change Notification Procedure
ITSOP-006 Administration of Controlled Documents in X-Files
ITSOP-007 Registration Agent SOP
ITSOP-008 Certify and Sign PDF Documents with Digital Signatures
Guidance Documents
IT guidance documents contain reference information, such as guidelines, checklists, user guides, etc. IT guidance documents are approved by the Chief Information Officer.
ITGD-001 Laptop Security Guidelines
ITGD-002 Information Services Provider Security & Compliance Checklist
ITGD-003 Strong Password Guidelines
Forms
IT forms are completed and submitted according to instructions on the form.
ITF-001 Information Resources User Acknowledgement Form
ITF-002 Contractor Confidentiality Acknowledgement Form
ITF-003 Information Security Policy Exception Request Form
ITF-004 Lost or Stolen Information Resource Equipment Report Form
Other Policies
The Handbook of Operating Procedures (HOOP) is the official policy manual of The University of Texas Health Science Center at Houston. Information Technology HOOP policies are found in chapter 17. IT HOOP policies contain general standards that address use, security and compliance with The University of Texas System policies and state and federal laws to ensure information resources are secure and available to support the mission of the university. HOOP policies are reviewed and approved in accordance with the Policy and Procedure Development and Maintenance policy under the University Governance section of the HOOP.
For questions or to report errors, contact Kim Beckett at itcompliance@uth.tmc.edu.