Santa Clara University

Information Security Office

Information Security Program

Guiding Principles

Use of Santa Clara University’s information resources must be consistent with Santa Clara University’s educational goals, as well as comply with local, state and federal laws, and University policies.
  • Approved Practices are high level statements that define the University's philosophy on a specific issue.  They can be thought of as organizational "law."  Approved Practices must go through a thorough review before being implemented and must be accessible, comprehensive, and concise.
  • Standards define minimum requirements for addressing specific issues or risks in order to comply with policy.
  • Procedures are instructions for how to comply with a standard, often designed for specific audience.  For example, an Anti-Virus procedure could define how end-points on the network will keep their anti-virus software up-to-date.

Standards Documents


Information Security Office, 1-408-554-5554,