The following resources represent valuable information found across the Web on a variety of university-related topics. Take some time to explore the various links below to learn more about information security and privacy.

Information Security and Privacy Documents, guides and procedures 

• Risk Assessment Survey
• FSU Information Classification Guidelines
• Contract Addendum for University Sharing of any Information Classified as Protected and Private with a 3rd Party Vendor or Service Provider
• FSU Incident Response and Reporting Procedures
• OneDrive Data Use
• The FSU Information Security Manager
• The FSU Unit Privacy Coordinator
• Guidelines for the Use of Personal Cloud Services for University Business
• Guidelines for Faxing FSU Classified Information as Protected
• Nexpose User Guide - Contact ITS/ISPO at ITS-SecurityOps@fsu.edu
• Guide to permanently sanitize media
• Guide to DDoS Attacks
• Transport Layer Security Protection Cheat Sheet
• Reduce the Risks of SNMP Abuse
• Inventory Spreadsheets for Datasets, Hardware, and Software
• Understanding Risk Levels

Credit/Debit Card Records

• Departmental Business Management Guide - Payment & Credit Cards
• Payment Cards Policy 4-OP-D-2-G

Employee Records, Health Records, and Student records

• The Genetic Information Nondiscrimination Act (GINA)
• Health Insurance Portability and Accountability Act - Privacy Rule
• Health Insurance Portability and Accountability Act - Security Rule
• HITECH Act Enforcement Interim Final Rule
• Health Insurance Portability and Accountability Act - Privacy Rule
• Health Insurance Portability and Accountability Act - Security Rule
• HITECH Act Enforcement Interim Final Rule
• Gramm-Leach-Bliley Act
• FSU Registrar FERPA Information Website
• FSU Registrar FERPA FAQ
• U.S. Department of Education FERPA Website

FBI Criminal Records

• Criminal Justice Information Systems (CJIS)

Incident Reporting

• iC3
• FTC
• US-CERT

National Institute of Standards and Technology (NIST) Publications

• 800-53 Security and Privacy Controls for Federal Information Systems and Organizations 
• 800-171 Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations

Research Records

• The International Traffic in Arms Regulations (ITAR)
• Export Administration Regulation (EAR)
• Federal Policy for the Protection of Human Research Subjects (Common Rule)
• Research Involving Human Subjects –NIH
• The Belmont Report (Human Subjects of Biomedical and Behavioral Research)
• Federal Information Security Modernization Act (FISMA)

Websites

• Multi-State Information Sharing and Analysis Center (MS-ISAC)
• United States Computer Emergency Readiness Team (US-CERT)
• United States Department of Homeland Security (DHS)
• Children's Online Privacy Protection Rule ("COPPA")
• Department of Justice
• The Definitive Guide to Internet Privacy and Online Security
• A Parents Guide to Facebook
• UK Safer Internet Centre