Information Technology Policies Under Review

IT policies and standards are regularly reviewed and updated as needed, in accordance with Development of University Policy (SPG 601.35), the Procedures for Development of University Policy, and the IT Policy Development and Administration Framework.

The IT policies and standards below are currently under revision or development. Drafts, where available, are open for review. Members of the university community are welcome to provide feedback at [email protected].

Policies and Standards Under Review

Security Log Collection, Analysis, and Retention (DS-19) - REVISION

  • Revision stage: This standard is being revised to include revised requirements for Security Log Collection, Analysis, and Retention.
  • Summary of proposed changes is available for review (U-M login required). Contact [email protected] with questions and comments.
  • TARGET COMPLETION DATE: FALL 2024.

Network Security (DS-14) - REVISION

  • Revision stage: The standard is being revised to include new requirements for Network Security. 
  • Executive summary will be posted here when available.
  • TARGET COMPLETION DATE: WINTER 2025.

Endpoint Security Administration (DS-23) - NEW

  • Development stage: Working with Subject Matter Experts on a new standard and accompanying guidance addressing Endpoint Security.
  • Executive summary will be posted here when available.
  • TARGET COMPLETION DATE: FALL 2024.

Institutional Data Resource Management (SPG 601.12) - REVISION

  • Revision stage: This policy is being updated to reflect updates to technology and the U-M Data Governance Framework.
  • Executive summary is available for review (U-M login required). Contact [email protected] with questions and comments.
  • TARGET COMPLETION DATE: WINTER 2025.

Recently Updated Policies and Standards

IP Addressing (601.15) and Domain Naming (SPG 601.15-1)

  • IP addressing has become a common practice that does not require SPG-level oversight, while the complexity of domain naming has outgrown the parameters specified in the policy. SPG 601.15 and SPG 601.15-1 have been merged into one streamlined policy. See the Executive Update Summary for more details (U-M login required)
  • UPDATE DATE: July 25, 2024.