PURPOSE
Pacific University has adopted this Mobile Device Policy and Procedure to ensure the confidentiality, integrity, and availability of all Protected Data we create, receive, maintain, or transmit as required by federal or state regulatory requirements, including but not limited to FERPA, GLBA, HIPAA, PCI, and other regional or local applicable laws and regulations.
University colleges, schools, and departments should follow these procedures to comply with the Mobile Device Policy, Policy Number POL-UIS4511.
PROCEDURE
Departments are responsible for mobile devices and to ensure they are provisioned according to the UIS Mobile Device Security Technical Recommendations. Specific recommendations by University Information Services are that users:
- Check for and install patches and operation system updates on your mobile device, to remove known vulnerabilities on a regular basis
- Create a PIN or passphrase of at least 4 characters
- Enable encryption of the data on a mobile device (iPads, iPhones, Androids, Windows Phones, etc.).
- Configure the device to auto lock the screen after no more than 5 minutes of inactivity.
- Configure the device to automatically reset to factory settings (data wipe) after 10 (or fewer) failed login attempts.
- Set up and configure a geolocation application (e.g. Lookout, FindMyPhone, etc.) so that the device can be located and/or erased if it is lost or stolen.