Skip to main content

JSU CYBER AWARENESS

CLEAN DESK POLICY

 

Abstract: 
JSU must protect and control access to the sensitive Data it creates, collects, stores and process in paper, and electronic  formats in accordance with all applicable federal and state laws and university policies.

Policy Number: 50000.006
Effective Date: 1/27/2017
Review/Revised Date: 4/13/2023 
Category: Information Technology
Policy Owner: CIO/Information Technology
Policy Contact: CISO/Information Technology

 

Policy Statement

The purpose for this policy is to establish a culture of security and trust for all employees at Jackson State University (“JSU” or “University”). An effective clean desk effort involving the participation and support of all JSU employees can greatly protect paper documents and removable media that contain sensitive information about our students, customers and vendors. All employees should familiarize themselves with the guidelines of this policy.

 

Purpose

A clean desk can produce a positive image when our customers visit the university. Our various campuses should all communicate the same image of trust university-wide. It reduces the threat of a security incident as confidential information will be locked away when unattended. Sensitive documents left in the open can be stolen by a malicious entity.

 

Definitions

  • Clean Desk – a University directive that specifies how employees should leave their workspace when they leave the office.

 

Employee Responsibilities

  • At known extended periods away from your desk, such as a lunch break, sensitive working documents and removable media are expected to be placed in locked drawers.
  • At the end of the working day the employee is expected to tidy their desk and to put away all office paperwork and documentation. JSU provides locking desks and filing cabinets for this purpose.
  • This policy requires employees to clear their desks of all papers and removable media at the end of the day

Policy

  • Allocate time in your calendar to clear away your paperwork and documents.
  • Always clear your workspace before leaving for extended periods of time.
  • If in doubt – throw it out. If you are unsure of whether a duplicate piece of sensitive documentation (passwords, credit card information, spreadsheets with personally identifiable information, etc.) should be kept – it will probably be better to place it in the shred bin.
  • Consider scanning paper items and filing them electronically on your JSU issued computer or workstation.
  • Use the shredder bins for sensitive documents when they are no longer needed. If a shredder bin is not located in your department, take all files to the nearest shredder bin and discard of them if they are no longer needed. Contact the proper department if a shredder bin is not located in your department or near you.
  • Lock your desk and filing cabinets at the end of the day.
  • Lock away portable computing devices such as laptops or tablet devices.
  • Treat mass storage devices such as CDROM, DVD or USB drives as sensitive and secure them in a locked drawer.

Employee Adherence

  •  All staff, employees and entities working on behalf of JSU are subject to this policy.

Sanctions

  • Any employee found to have violated this policy may be subject to disciplinary action, up to and including termination of employment.

 

JSU CYBER AWARENESS

Location

1400 John R. Lynch Street
Student Center
Jackson, MS 39217-0280

Phone: 601.979.2241