SU Information Technology Security Standards and Procedures
Information Security Standards:
Syracuse University Information Security Standard (Data Classification and Compliance): This standard is the keystone of all the security standards, as it defines the kinds of data ("University data" or "University Information") that we are most concerned about protecting. Here is the University's representative data classification list.
S0101 - PCI System Standard: Describes the requirements for systems and technologies that utilize, capture and store credit card information for Syracuse University as mandated by the Payment Card Industry Data Security Standard (PCI DSS).
Appendixes : Additional standards/guidlines for Group 4 vendors.