The Ohio State University Information Security Standard was developed to provide a definitive set of risk management objectives and security controls for all university information systems and assets under the university’s control and for the people who access these systems. Use of this standard ensures that Ohio State consistently protects its information assets; satisfies legal, regulatory, and contractual requirements; and applies best practices for information security and risk management.

The Information Security Standard document can be viewed at Information Security Standard (ISS) | Cybersecurity (osu.edu)