Communities of Practice for Information Security Standards

Information Assurance (IA) has set up joinable MCommunity groups to serve as communities of practice around implementation of the revised Information Security (SPG 601.27) policy and supporting standards. Use the communities of practice listed below to:

• Access the collective wisdom and expertise of your U-M colleagues.
• Ask questions of, or seek advice from, each other related to implementing and operationalizing a specific standard.
• Share resources, success stories, and potential solutions to implementation barriers. 
• Ask IA subject matter experts for interpretation, elaboration, or clarification related to a specific standard in a forum where others at U-M with similar job responsibilities and interests will also see the response and have the opportunity to add more insight and experience to the discussion.

Access, Authorization, and Authentication

• Standard: Access, Authorization, and Authentication Management (DS-22)
• Joinable MCommunity Group: COP-DS-22-Access and Auth
• Email Address: cop.ds22-access.auth@umich.edu

Disaster Recovery and Backup

• Standard: Disaster Recovery Planning and Data Backup for Information Systems and Services (DS-12)
• Joinable MCommunity Group: COP-DS-12-DR and Backup
• Email Address: cop.ds12-dr-backup@umich.edu

Data Disposal and Media Sanitization

• Standard: Electronic Data Disposal and Media Sanitization (DS-11)
• Joinable MCommunity Group: COP-DS-11-Data Disposal and Media Sanitization
• Email Address: cop.ds11-disposal-sanitization@umich.edu

Education, Awareness, and Training

• Standard: Information Assurance Awareness, Training, and Education (DS-16)
• Joinable MCommunity Group: COP-DS-16-IA Education and Awareness
• Email Address: cop.ds-16-IA-Ed-Awareness@umich.edu

Encryption

• Standard: Encryption (DS-15)
• Joinable MCommunity Group: COP-DS-15-Encryption
• Email Address: cop.ds15-encryption@umich.edu

Information Security Risk Management

• Standard: Information Security Risk Management (DS-13)
• Joinable MCommunity Group: COP-DS-13-Info Security Risk Mgmt
• Email Address: cop.ds13-sec-risk-mgmt@umich.edu

Network Security

• Standard: Network Security (DS-14)
• Joinable MCommunity Group: COP-DS-14-Network Security
• Email Address: cop.ds14-network-security@umich.edu

Physical Security

• Standard: Physical Security (DS-17)
• Joinable MCommunity Group: COP-DS-17-Physical Security
• Email Address: cop.ds17-physical-security@umich.edu

Secure Coding and App Security

• Standard: Secure Coding and Application Security (DS-18)
• Joinable MCommunity Group: COP-DS-18-Secure Coding and App Security
• Email Address: cop.ds18-securecode-appsecurity@umich.edu

Security Enterprise App Integration

• Standard: Security of Enterprise Application Integration (DS-09)
• Joinable MCommunity Group: COP-DS-09-Security Enterprise App Integration
• Email Address: cop.ds09-sec-enterprise-app-int@umich.edu

Security Log Management

• Standard: Security Log Collection, Analysis, and Retention (DS-19)
• Joinable MCommunity Group: COP-DS-19-Security Log Mgmt
• Email Address: cop.ds19-security-log-mgmt@umich.edu

Third Party Vendor Security and Compliance

• Standard: Third Party Vendor Security and Compliance (DS-20)
• Joinable MCommunity Group: COP-DS-20-Vendor Security and Compliance
• Email Address: cop.ds20-vendor-sec-compliance@umich.edu

Vulnerability Management

• Standard: Vulnerability Management (DS-21)
• Joinable MCommunity Group: COP-DS-21-Vulnerability Mgmt
• Email Address: cop.ds21-vulnerability-mgmt@umich.edu