Information classification

Information security aims to secure that risks, disturbances and threats directed towards university information resources are identified and handled to minimize negative consequences regarding availability, confidentiality and accuracy.

Information classification is the basis to give information the necessary protection. Information is classified by the function and importance it has and the consequences that will occur if the information is improperly handled, disappears, end up in the wrong hands, corrupted etc.

Instructions for information classification (PDF). With the instructions come:

• Instructions to evaluate information classes (PDF)
• Form for information classification

Risk and threat scenario analyses

Risk and threat scenario instructions. With these instructions come:

• Instructions for security and vulnerability analyses (PDF)
• Security and vulnerability form (PDF)

Self control checklists for IT-systems

Instructions on how to work with the checklist. With the instructions come:

• Checklist
• Finished report form
• Action plan

IT security

Information regarding technical security, system configurations, how to protect your computer, malware, how to report IT security incidentes etc.

Risk management

Risk management process with yearly reports

Information - written, spoken, in electronic form, all kinds of research data, examinations etc - is an asset that, like physical properties and personnell is vital to to maintain the university activities.

Content owner: Veronika Berglund 26 april 2017