Main Navigation

President Taylor Randall approves revised information security policy

University of Utah President Taylor Randall has approved revisions to Policy 4-004: University of Utah Information Security Policy and Rules 4-004A, C, D, F, G, J and Q, effective immediately. The revised information security regulations apply to all University of Utah entities, including all main campus, Health Sciences and University of Utah Health organizations.

The changes, which also were presented to the U’s Institutional Policy Committee, comply with the recently updated Utah Board of Higher Education Policy R345: Information Technology Resource Security and strengthen the university’s information security policy to address the present and increasing risks of cybersecurity incidents.

For a detailed summary of the revisions, you can access the memo signed by Randall here.

To access the revised policy and rules, please visit

These changes were made as interim revisions, and the Information Security Office (ISO) will finalize them through the standard university regulation review and approval process as soon as possible.