School of Medicine Data Security Compliance Program

CURRENT INITIATIVES AND ACTIVITIES

SOM ACTIONS ARE REQUIRED IMMEDIATELY

Upcoming ACTIVITIES

  • Network Access Control (NAC) system initiative from UCSF IT

    • Refer to NAC FAQ for more information

  • SOM DSCP Application Survey and SOM Application Assessment

  • Encrypted USB Drives Distribution (Phase 2)

 

REFER TO SOM DSCP WIKI FOR FURTHER DETAIL ACTION STEPS

 

Background

The School of Medicine Data Security Compliance Program (SOM DSCP), housed within Information Services Unit (ISU), focuses on the School of Medicine's (SOM) departmentally managed information technology assets and processes.

SOM DSCP partners with enterprise UCSF Central IT Data Security Compliance Program (Central IT DSCP) to ensure and advocate for the implementation and maintenance of security controls required by the HIPAA Security Rule and other regulations governing the protection of confidential data.

SOM DSCP strategic objectives of the program are to:

  • Empower business units to identify, prioritize and remediate risks
  • Educate the organization regarding real threats and weaknesses
  • Increase visibility and capability to track risks
  • Improve the consistency of risk assessment approaches
  • Meet and exceed audit and regulatory requirements, and customer expectations

Learn more about the School of Medicine Data Security Compliance Program