Division of IT: Security
Security Inspection Program Levels
The Division of IT security inspection program currently offers three levels of service.
Information System Inspection
A detailed look at a particular information system. This inspection includes the key servers or workstations associated with a particular information system, with a high level understanding of the inter-dependencies of the system. This level of inspection is intended to inform system administrators and key decision makers about the state of security in detail, related to a particular information system. It is meant to identify specific issues related to the configuration and management of a particular information system.
A detailed look at a particular application. This inspection includes inspection of application architecture, interfaces and code. This level of inspection is intended to inform application developers and key decision makers about the state of security in detail, related to a particular application. It is meant to identify specific issues related to the application's functionality, or how it may be misused.
A combination of Information System inspection and Application inspection that is designed to meet the requirements set out by VISA and Master Card. E-Commerce Inspections are required for an application that needs to obtain a University merchant ID number from the Treasurer's Office.