Cybersecurity Awareness Month

Revised and Updated Policies 2021

The Washington University Office of Information Security (OIS) supports education, research, and clinical care by protecting systems and data for everyone at our institution. Security threats today are constantly changing as cybercriminals try new tactics to steal and hold ransom user and institutional data.

To adapt to changes in the information security landscape, the OIS regularly reviews and updates our policies. Additionally, our office engages in direct outreach with our campus during the month of October by participating in Cybersecurity Awareness Month. Throughout the month, we offer events, activities, and resources to help our users keep themselves, their data, and our institution secure.

Please visit us at or follow us on Twitter (@WUSTL_InfoSec) for more information about Cybersecurity Awareness Month.

Below, please find a list and brief description of a few of our new and existing policies. The full text of these and other policies are available at

  • Computer Use Policy
    • This policy protects the availability, integrity, and confidentiality of WashU information systems themselves. The policy includes specific information about computer use, data privacy, credentials and authentication, accessing WashU secure systems, the use of personal devices, and the misuse of resources. Additionally, this policy outlines WashU’s rights regarding computer use, including regulating access to systems, monitoring, enforcing security controls, reporting, investigating policy violations, and imposing sanctions for violations.
  • Personal Device Security Policy:
  • Vulnerability Management Policy

To contact the Office of Information Security about our policies or other issues, please send an email to or call us at 314-747-2955. To make an anonymous report to the Washington University Compliance Office, please send an email to or call 314-362-4954.

Please visit for more information about our office and follow us on Twitter at @WUSTL_InfoSec.