|
X.03 |
|
Physical
and Internet Security for iRIS |
Objective
This procedure describes the physical and internet security for the iRIS system.
Policy/Procedure
I. The iRIS system servers are located in the data center managed by the Network Services LAN group of the Information Technology department. The details related to physical location are provided in the Information Technology Security Program – Physical Security policies (http://www.uth.tmc.edu/itsecurity/policy/phy_sec_proc.htm Geographically Restricted Areas) and in the Service Level Agreement (http://sds.uth.tmc.edu/docs/sla/SLA-%20iRIS.pdf, Server Operations) for the iRIS System as agreed upon between the Network Services LAN group and the system owner.
II. The iRIS application server is located in Zone 20 while the database server is located in Zone 100. Policies regarding firewall protected zones and host configurations are published by the Information Technology Security Program (http://www.uth.tmc.edu/itsecurity/policy/host_config_proc.htm , Secure Extranet -Zone 20 and Secure Intranet - Zone 100 http://its.uth.tmc.edu/restricted/policies/Firewall Zones.pdf).
|
Applicable Regulations and Guidelines Service Level Agreement for
the iRIS System - http://sds.uth.tmc.edu/docs/sla/SLA-%20iRIS.pdf,
Server Operations
Information Technology
Security Program – Host Configurations (http://its.uth.tmc.edu/restricted/policies/HostConfigurationPolicyv2.pdf), Zone 20 - Secure Extranet, Zone 100 – Secure Intranet Information Technology
Security Program – Physical Security policies - Geographically Restricted
Areas http://its.uth.tmc.edu/restricted/policies/PhysicalSecurity-1.pdf
, Geographically Restricted Areas
Information Technology
Security Program – Firewall Protected Zones http://its.uth.tmc.edu/restricted/policies/Firewall Zones.pdf |
|
Return to Policies and Procedures Home
Page |
|
Updated 5/2007, Report
broken links |