This Standard supports and supplements the University of Central Oklahoma’s (“University” or “UCO”) Information Security Policy. The standard is mandatory and enforced in the same manner as policy. It will be periodically reviewed and updated as necessary to meet changes in legal and regulatory requirements.
UCO recognizes that units and individuals at UCO operate in diverse and complex environments. In the event strict application of the Information Security Policy and its supporting standards cannot be met with reasonable efforts, UCO is committed to assisting individuals and units in the completion of their objectives while providing for appropriate protection of institutional information assets.
In order to balance the needs of individuals and units with the need to securely accomplish UCO’s mission, this standard will provide the UCO community with an exception process that Accommodates specific limited circumstances in the event utilizing the security controls identified in the Information Security Policy and the associated supplemental Standards and Guides would significantly impair the educational, research, business, or service missions of the University, and approves necessary variations from normally required policy compliance.