IT-1 Standard for IT Security Roles and Responsibilities

In this article


The Board of Regents' Information Technology policy and Section 12-112 of the Education Article of the Maryland Code require that each institution within the University System of Maryland adopt a policy that assigns roles and responsibilities with regard to information technology security.

Every member of the university community is responsible for the protection of the electronic data, applications, computer systems, networks, and accounts under their control. Users are expected to exercise the level of care appropriate to the sensitivity of the data stored on university systems and networks.

University Policy X-1.0(A) establishes that those using university information technology resources are responsible for complying with security standards set forth by the Vice President/Chief Information Officer (VP/CIO).


Roles and responsibilities

All members of the university community play a role in the protection of the university's data and Information Technology resources. In particular:



This standard will be reviewed and updated annually or as needed based on the recommendations of the Vice President/Chief Information Officer. 



 Version Date    Change
 1.0  March 14, 2007  Initial version
 1.1  January 29, 2018
Replace OIT with DIT; Reference UMD Policy X-1.0(A); Add
data and applications as elements to be protected; Add incident
reporting to user responsibilities