Regulations

Information security is an essential part of protecting information and information systems from unauthorized access, use, disclosure, disruption, modification or destruction. To ensure this, organizations rely on policies, security concepts and guidelines that include both strategic and practical measures.

  1. 1.Guidelines

    The information security guidelines provide a general framework that defines the objectives and principles of information security. They reflect the vision and strategic orientation of the University of Kassel with regard to information security.

  2. 2.Concept

    The information security concept builds on the information security policy and provides a detailed description of the security requirements and the strategies and measures that need to be implemented to meet these requirements. They often include specific security controls, risk management procedures and contingency plans. The security concept is dynamic and is regularly reviewed and updated to take account of new threats and changes in technology or the business environment

  3. 3.Policies

    The information security policies are specific, binding rules that define how the University of Kassel protects its information and IT systems. These guidelines provide detailed instructions for the implementation of security measures and the handling of security incidents. They may include instructions on password security, access controls, data backup, encryption and other security topics. Policies are binding for all employees and play a crucial role in creating a secure information environment.

In summary, the guideline, security concept and guidelines for information security are crucial to establishing and maintaining a strong security culture at the University of Kassel. They serve to raise awareness, define clear procedures and responsibilities and protect the University of Kassel from the constantly evolving threats in the digital world.