Skip to Content

Information Security Office

Network is experiencing difficulties.

Policy Index
Information Systems Acquisition, Development, and Maintenance
CSU Policy
Number: 8070.0 Revised: April 19, 2010

Policy Objective

The CSU Information Security policy provides direction and support for managing the acquisition, development and maintenance of CSU information systems.

Policy Statment

Campuses must integrate information security requirements into the software life cycle of information systems that contain protected data.  The security requirements must identify controls that are needed to ensure confidentiality, integrity, and availability.  These controls must be appropriate, cost-effective, and mitigate risks that may result from unauthorized access, use, disclosure, disruption, modification, or destruction of the protected data.

Continue to the Sacramento State Supplemental Policy

Back to to Sacramento State Information Security Policy Website