Privacy and Security Policies
Acceptable Computer Use Policy: SCB–AD20
The purpose of this policy is to outline the acceptable use of computer equipment within the Smeal College of Business.
Audit Policy: SCB–AP–AD20
To provide the authority for members of the College’s I.T. security team and the University’s Security Office to conduct security audits on any system within the Smeal College of Business in accordance with University policy AD20.
Password Policy: SCB-PW-01
The purpose of this policy is to establish guidelines for creation of strong passwords, the protection of those passwords, and the frequency of change.
Remote Access Policy: SCB–RAP–AD20
The purpose of this policy is to define standards for connecting to the Smeal College of Business network from any remote host.
Server Security Policy: SCB–SSP–01
The purpose of this policy is to establish standards for the base configuration of internal server equipment that is owned and/or operated by the Smeal College of Business, including servers operated at the departmental level for research purposes.
Virtual Private Network (VPN) Policy SCB-VPN-01
The purpose of this policy is to provide guidelines for Remote Access via IPSec Virtual Private Network (VPN) connections to the Smeal College of Business and/or Penn State University networks.
Wireless Communication Policy: SCB–WCP–01
This policy establishes procedures for gaining secure access to wireless data communications within the Smeal College of Business.
Firewall Policy
The purpose of this policy is to outline the College’s use and management of centralized firewall services.
