A role within the University responsible for enabling compliance with data protection legislation and playing a key role in fostering a data protection culture within the University and helps implement essential elements of data protection legislation, such as:
The Principles® constitute a widely leveraged global standard that identifies the critical hallmarks and a high-level framework of good practices for records management, records and information management (RIM), and information management programs. Published by ARMA International in 2009 and updated in 2017, the Principles are grounded in practical experience and based on extensive consideration and analysis of legal doctrine and information theory. They are meant to provide organizations with a standard of conduct for governing information and guidelines by which to judge that conduct.
A Group, reporting to University Executive Committee, that oversees the Information Governance Framework, Records and Information Management, Information Security, Data Protection and Freedom of Information across Durham University. The purpose of the Group is to support University Strategy by helping the University to identify its information assets, requirements, risks and responsibilities; promoting efficient, effective and economic lifecycle records and information management across all media and formats to meet operational and legal requirements; seeking to reduce overall risk for the University through good information governance; and proactively engaging with University communities.
An international standard for implementing an ISMS.
One of a defined group of large information assets held by the University:
Individuals who attempt to compromise IT systems using widely available tools that exploit the most obvious vulnerabilities. Typically they have minimal cyber security skills beyond the use of those tools.
University Executive Committee member with overall responsibility for:
Super Information Asset Owner (SIAO)