St. Olaf College | Northfield, Minnesota, USA

Resources for...
- » Getting Help
- » Students
- » Visitors
- » Faculty & Staff
- » About IIT
Jump to...
- » Documentation
- » ResHall Networking
- » Instructional Technology
- » Healthy Computing
- » Building a Web Site
- » Computing Seminars
- » Newletters
- » Computer Purchase Recommendations
- » Information Security
- » Google Apps for Education at St. Olaf
- Information and Instructional Technologies
- Rolvaag Library 251
- 1510 St. Olaf Ave.
- Northfield, MN 55057
- 507-786-3830
- 507-786-3096 FAX
- helpdesk@stolaf.edu
- Instant Message (IM)
  AIM, MSN or Yahoo!:
  stocomputerhelp

Employee Responsibilities for Computer Security

Keep your password confidential, do not share it with others, and absolutely do not write it down and "hide it" at your desk. Never log someone else in to your account or use another person’s username and password. Many of our business systems track data changes by username. For auditing purposes it is imperative that we know who made changes to the data. Your password is your responsibility and you will be held accountable for activities within your account and activities associated with your username and password.
“Lock” your computer when you step away from it. This can be done by adding a password to the screen saver or using the “Lock workstation” feature in Windows 2000/XP.
Do not store highly protected or confidential data on your computer hard drive. If your machine is stolen, the data is stolen too. Store protected or confidential data on the server. IIT backs up the central servers nightly. If you store files on your hard drive, you need to work with your supervisor to establish the appropriate backup schedule for any files you keep on your computer.
Do not keep any protected or confidential data on a laptop. Laptop theft is one of the more common ways sensitive data is stolen.
Protected or confidential data should not leave campus. If special circumstances arise and this data must leave campus, the data must be in an encrypted format. IIT can work with individuals to set up encryption.
Social security numbers should never be used as unique identifiers. IIT is working to purge all social security numbers from our systems except where it is absolutely necessary. You should verify that you do not have social security numbers in any of your data files. You should also make sure that you don’t have paper documents with social security numbers too.
Word and Excel have options to password protect files. You should consider this for highly sensitive files. Please note that it is difficult to crack these passwords so be sure to set the password to something you can remember.
Never set your browser to remember your username and passwords for websites. You should also turn off the “autocomplete” feature in your browser.
Do not store credit card numbers on your hard drive. If you must keep them, store them on the server and consider putting a password on the file.

If you supervise staff, make sure everyone knows the procedures for dealing with protected or confidential data.