JSU CYBER AWARENESS
WIRELESS ACCESS POLICY
|
Abstract: Policy Number: 50000.025/ CMMC AC.1.001 |
|
Purpose
The purpose of this policy is to implement policies and procedures for granting access to Controlled Unclassified Information (CUI).
Scope
This policy applies to all organization workforce members and all systems, network, and applications that process, store or transmit CUI. This policy also applies to all vendors, partners, researchers and contractors.
Responsibilities
The Chief Information Security Officer is responsible for ensuring the implementation of this policy.
Definitions
-
- Controlled Unclassified Information (CUI) – is information that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations, and government-wide policies but is not classified.
Policy
All environments involved with CUI must comply fully with the NIST 800-171 standards (either directly or through compensating controls. Jackson State University and its employees, vendors, and contractors will implement the following:
Wireless Access
- 1.1 Authorize wireless access prior to allowing such connections by:
- Establishing usage restrictions, configuration/connection requirements, and implementation guidance for wireless access.
- Authorizing wireless access to the information system prior to allowing such connections.
- Ensure that the information system protects wireless access to the system using authentication of users and devices and encryption.
Sanctions/Compliance
Failure to comply with this or any other security policy will result in disciplinary actions as per the Sanction Policy. Legal actions also may be taken for violations of applicable regulations and laws.
Related Standards, Policies, and Processes
- Mobile device policy
- Network controls
- Information transfer policies and procedures
