Each of us has a responsibility to ensure that our computers and the data they contain are safe. We hope that the security tips we provide will help create a more secure IT environment at NIH.
Safeguarding Data and Information
• Backups
• Old floppies • Locks • Surplus computers • E-mail • Shredding Sensitive data includes patient medical records, personnel records, contract information, financial and budget records, and IP addresses. Regularly back up your data and keep the backup copy in a secure location. Making data backups of your local drive is your responsibility.
Before you discard a diskette, remove all data—by either reformatting or degaussing the diskette. Refer to the NIH sanitization policy .
If you handle sensitive documents, do not leave them in the open for others to see. Keep them locked up if you step away from your desk.
Before you surplus a computer, have your hard disks sanitized. Computers with disks that have not been sanitized will not be accepted as surplus. (See the NIH Sanitization policy Web site, above.)
For sensitive financial, contract, budget, personnel, and patient information, consider using a secure mechanism when e-mailing. Consult your information systems security officer (ISSO) for more information about setting up your PC for secure e-mail transmissions.
When you’ve finish working with output that contains sensitive information—including temporary output—lock it away or destroy it by shredding. Once material is shredded, you can place it in the recycle bin.
| Interface Online 219 [ June 25, 2001 ] | Back | Index | Next |
