• 17.3.31 Logging and monitoring

    IT Division shall as a matter of course collect and analyze logging information from IT resources in order to detect intrusion or misuse. IT Division ...

  • 17.3.30 Hosting of hardware in OIST IT facilities

    Any party at OIST wishing to purchase and/or house hardware (including servers and storage) into OIST IT facilities must consult with IT Division. Fai...

  • 17.3.28 Operation and Management

    17.3.28.1  Business continuity planning Information asset managers and IT Division shall develop business continuity plans, ensuring the availab...

  • 17.3.27 Web presence

    17.3.27.1  Domain name management IT Division manages the oist.jp domain on behalf of the Communications and Public Relations division. Resea...

  • 17.3.26 Training

    17.3.26.1  User training Supervisors are responsible for ensuring that a user is properly trained with regard to information security prior to c...

  • 17.3.25 Intrusion prevention

    The system administrators shall implement the following controls in order to prevent intrusion into servers and systems; Delete or turn off unneces...

  • 17.3.23 Protection against malicious software

    Users are responsible for ensuring that any IT asset they manage have: Latest software patches and updates applied Anti-virus or other applicable ...

  • 17.3.22 IT Asset Security

    All users are responsible for preventing the theft of IT assets. Users shall ensure following controls in order to prevent theft of, or unauthorized a...

  • 17.3.21 Information disposal

    Users must securely erase ‘internal’ or higher classified information promptly in non-recoverable manner when they are no longer required. Users m...

  • 17.3.18 Prevention of information leakage or manipulation in transit

    Users shall apply security controls when transmitting data of ‘confidential’ or higher classification to external parties. Such data must be en...