Sacramento State Information Security

The Information Security Office at Sacramento State supports the central mission of the University by assuring confidentiality, integrity and availability of its information and information systems.

		Risk Management The Information Security Office manages the Information Security Risk Assessment process on campus.   The Truarx assessment tool is also used to inventory all servers, network gear, data centers, and physical locations of level 1 and level 2 data.  Maintaining a current inventory of these critical assets is important to ensure the appropriate controls are implemented and managed.  Please update the Information Security Office of any addition, changes or removal of this assets.				Web Application Scanner The Information Security Office has purchased a web application scanner to help developers and system owners find possible vulnerabilities on their web applications. This web scanner performs a through scan as well as penetration testing. If you wish to schedule a scan of your application, please see the web scanner request site
		Security related articales The Information Security Office has composed a list of articles related to Higher Education and incidents around security topics. These articles are a good refference for those who wish to understand the risk of not be secure.  Read more here				CSU Information Security Standards Newly vetted Information Security Standards. See the latest drafts of these standards here: