Computing and Network Security: Organizational Structure

UCSD's computing, data, and network security is supported by several committees and positions.

Administrative Computing and Telecommunications Policy Committee (ACTPC)

Mission:

The ACTPC advises the vice chancellor – Business Affairs, on the development of ACT implementation efforts and directions. The ACTPC provides advice on:

• Setting of organizational priorities
• Computer access policies and standard availability hours
• Prioritization and development of automated systems
• Coordination of efforts between ACT and other campus automated systems
• Training directions and efforts on applications under ACT’s area of responsibility
• Expanding and developing the telecommunications network

Members:

Debbie McGraw (Chair), Tom Jackiewicz, Dave Miller, Tom Collins, Don Larson, Ed Babakanian, Elazar Harel, Greg Hidley, Karen Andrews, Margie Pryatel, Marlene Shaver, Nancy Hartley, Paul Croft, Thomas Leet, Stephanie Burke, Doug Bennett, Mae Brown, Sylvia Lepe, Katrina Albrandt

Subcommittees:

Security Subcommittee

• Mission: To develop and recommend campus-wide standards for adoption and approval of the ACTPC, addressing security and access to business, student, and non-medical information systems and data maintained by all campus entities.
• Focus: The committee is limited to security of and access to data. Issues addressed by the Security Subcommittee include, but are not limited to:
  • Development of policy for control and access to personal information, such as Social Security number, in accordance with recent changes in California law
  • Other security measures to control possible identity theft
  • Development and definition of standard campus-wide roles defining access rights to data, in conjunction with work of the Single Sign-On Committee
• Committee Chair: Charlotte Klock (ACT)

Data Steward Subcommittee

• Mission: The subcommittee develops a data steward policy, oversees the data steward class content and schedule, and defines ownership and data components of core data through data dictionary development.
• Focus: The committee is limited to specific use and ownership of data.
• Committee Chair: Katrina Albrandt (BFS)

Single Sign-On Oversight Committee

• Mission: The committee oversees the implementation of the campus single sign-on strategy by defining:
  • Single user ID/ password that will be used to establish and authenticate the identity of members of the campus community; this will be the basis for granting access to information and systems hosted by Business Affairs
  • Campus organizational hierarchy to serve as a framework for defining roles authorizing use of services
  • Integrated directory services to support all of the above
• Committee Chair: Charlotte Klock (ACT)

Campus Health Insurance Portability and Accountability Act (HIPAA) Task Force

• Background: The Health Insurance Portability and Accountability Act of 1996 (HIPAA) establishes national standards to protect the privacy of a patient’s protected health information, to provide for security of patient information, and to simplify billing and other transactions. Some HIPAA-covered entities are not directly linked to the School of Medicine or the Medical Center.
• Mission: The campus HIPAA team oversees campus compliance for campus organizations such as student health services, athletics, occupational health services, and benefits.
• Committee Chair: Brian J. Murray (SOM)

Data Communication Coordination Group (DCCG)

• Mission: The DCCG is responsible for network and operating security for business, student, and non-medical information for the campus as a whole. Other responsiblilities include:
  • Evaluating technology and networking options for core systems
  • Providing oversight for the development of campus network security policy (PPM 135-3)
  • Developing policies and procedures for dealing with network intrusions
• Committee Chair: Tony Wood (ACMS) and Elazar Harel (ACT) – rotating chairs

Electronic Information Task Force (EITF)

• Mission: The Electronic Information Task force is responsible for:
  • Developing campus implementation guidelines consistent with the university-wide Policy on Electronic Communications
  • Developing guidelines for faculty-, staff-, and student-developed Web sites mounted on campus computing resources
  • Developing guidelines for operation of Web-based servers within the campus networked environment
  • Addressing other electronic information-related issues as determined by the task force
• Committee Chair: Brian Schottlaender (Library)

Significant UCSD Positions with Major Impact on Computer Security

• Director of IT Security – Gabe Lawrence, ACT / Responsible for:
  • Establishing, implementing, and maintaining a security program for campus-wide core administrative systems (e.g., Financial, Student, and Payroll/ Personnel)
  • Coordinating the formulation of policy
  • Determining resources required to support security environments across the large-scale multi-platform systems
  • Helping define, develop, and publish security standards for each critical technology environment
• The data security manager works closely with department system administrators, auditors, and the network security manager.

Departments

ACT

• Services
• Organization Chart
• For Staff
• ACT Staff
• Computing & Network Security: Organizational Structure
• FEIN & SSN Masking: Financial Identification Number
• Hubble Server Historic Graphs
• Mission & Vision
• News
• Policies & Procedures
• Reports & Presentations
• Server Performance Charts
• Sharecase
• Star Search
• Telecom Strategic Plan
• Telecom Design Guidelines Summary
• Training Room Directions