IT Resources Relocation Policy
Version 1.2
For Students, Faculty, Staff, Guests, Alumni
Purpose
The purpose of this policy is to restrict unauthorized relocation of IT Resources.
Scope
This IT security policy, and all policies referenced herein, shall apply to all members of the University community, including faculty, student workers, administrative officials, staff, authorized guests, delegates, and independent contractors (the “User(s)” or “you”) who use, access, or otherwise employ, locally or remotely, the University’s IT Resources, whether individually controlled, shared, stand-alone, or networked.
Policy Statement
- You must not relocate IT Resources from their original and intended locations.
- Contact the IT Service Desk if necessary to move an IT Resource from its original and intended location
- If the resource is not Fordham’s Office of Information Technology owned and managed, inventory must be accurate, up-to-date, and made accessible.
- This policy pertains to all applicable IT Resources and devices, including, but not limited to:
- Projectors,
- Desktop computers,
- Telephones,
- Printers, or
- Video conferencing units.
Definitions
IT Resources include computing, networking, communications, applications, telecommunications systems, infrastructure, hardware, software, data, databases, personnel, procedures, physical facilities, cloud-based vendors, Software as a Service (SaaS) vendors, and any related materials and services.
Related Policies and Procedures
Acceptable Use of IT Infrastructure and Resources Policy
Implementation Information
| Review Frequency: | Triennial |
|---|---|
| Responsible Person: | Senior Director, IT Security Operations and Assurance |
| Approved By: | CISO |
| Approval Date: | October 29, 2019 |
Revision History
| Version: | Date: | Description: |
|---|---|---|
| 1.0 | 10/29/2019 | Initial document |
| 1.1 | 11/05/2020 | Updates to the policy statement |
| 1.2 | 07/24/2023 | Updates to the policy statement |
Policy Disclaimer Statement
Deviations from policies, procedures, or guidelines published and approved by Information Security and Assurance (ISA) will only be considered cooperatively between ISA and the requesting entity with sufficient notice to allow for conducting appropriate risk analysis, documentation, review, and notification to authorized University representatives where necessary. Failure to adhere to ISA written policies may be met with University sanctions up to and including dismissal.