[ skip to content ]

Toggle Mobile Menu

University Policy 3502

More Information about this image

Handbook and paperwork for the newly hired.

Old Dominion University

University Policy

3502 Information Technology Infrastructure, Architecture and Ongoing Operations

Responsible Oversight Executive: Vice President for Administration and Finance
Date of Current Revision or Creation: March 15, 2017
  1. Purpose

    The purpose of this policy is to state the University's commitment to establishing specific standards, guidelines and procedures affecting key components of its information technology (IT) infrastructure, architecture, and ongoing operations.

  2. Authority

    Code of Virginia Section 23.1-1301, as amended, grants authority to the Board of Visitors to make rules and policies concerning the institution. Section 6.01(a)(6) of the Board of Visitors Bylaws grants authority to the President to implement the policies and procedures of the Board relating to University operations.

    Restructured Higher Education Financial and Administrative Operations Act, Code of Virginia Section 23.1-1000 et seq., as amended

  3. Definitions

    EDUCAUSE is a nonprofit association whose mission is to advance higher education by promoting the intelligent use of information technology.

    Information Security Officer (ISO) - The Old Dominion University employee, appointed by the President or designee, who is responsible for developing and managing Old Dominion University's information technology (IT) security program.

    Internet2 develops and deploys advanced network applications and technologies for research and higher education, accelerating the creation of tomorrow's Internet.

    ISO/IEC 27001/27002 is an information security standard published by the International Organization for Standardization (ISO) and by the International Electrotechnical Commission (IEC).

  4. Scope

    This policy applies to all decision makers, developers and planners of University systems and operations related to the conceptualization, design, acquisition, and maintenance of information technology.

  5. Policy Statement

    The University will establish specific standards, guidelines, and procedures that influence decisions affecting key components of its IT infrastructure, architecture, and operations. These standards, guidelines, and procedures will be reviewed periodically in accordance with Information Technology Standard 01.1.0, Technology Policy Development & Maintenance Standard, to assure they conform to best practices as described by the ISO/IEC 27001/27002, Information Technology - Code of Practice for information security management, EDUCAUSE, Internet2, and others within higher education, as well as those from selected technology industries.

    Research or other institutional endeavors by their nature may require the use of technology and practices not yet appropriate for normal use. The ultimate goal of this policy is to create logical relationships between information technology resources and the mission of the University and its units.

  6. Procedures

    The specific standards to be utilized for compliance with this policy are published on the Information Technology Services Computing Policies and Standards website. For security purposes, some procedures related to infrastructure, architecture and ongoing operations are maintained internally and are available upon request to relevant parties as authorized by the Chief Information Security Officer.

  7. Records Retention

    Applicable records must be retained and then destroyed in accordance with the Commonwealth's Records Retention Schedules.

  8. Responsible Officer

    Chief Information Officer

  9. Related Information

    Information Technology Standard 06.8.0 IT Infrastructure, Architecture & Ongoing Operations Standard

    The EDUCAUSE Center for Analysis and Research (ECAR) Campus Cyberinfrastructure Working Group helps educational institutions develop institutional strategies and plan their resource deployment in this emerging and evolving technological landscape and helps their users harness and optimize the power and capabilities of new integrated IT tools and systems for educational and research applications in higher education.

    The Postsecondary Electronic Standards Council is a non-profit association of colleges and universities; professional and commercial organizations; data, software and service providers; and state and federal government agencies.

Policy History

Policy Formulation Committee (PFC) & Responsible Officer Approval to Proceed:

/s/ Rusty Waterfield
Responsible Officer
March 9, 2017

Policy Review Committee (PRC) Approval to Proceed:

/s/ Donna W. Meeks
Chair, Policy Review Committee (PRC)
January 24, 2017

Executive Policy Review Committee (EPRC) Approval to Proceed:

/s/ David F. Harnage
Responsible Oversight Executive
March 10, 2017

University Counsel Approval to Proceed:

/s/ R. Earl Nance
University Counsel
March 14, 2017

Presidential Approval:

/s/ John R. Broderick
March 15, 2017

Previous Revisions

October 1, 2007; April 9, 2010; April 26, 2011; March 15, 2017

Scheduled Review Date

March 15, 2022