Policy Statement
It is the policy of Florida International University that all data pertaining to the institution must be systematically backed up. Scheduled restoration of data will be performed regularly to audit the backup process, ensuring its effectiveness and reliability. This proactive approach aligns with our commitment to maintaining the integrity, availability, and confidentiality of institutional data, thereby safeguarding the interests of our stakeholders and meeting the requirements imposed by regulatory bodies.
Scope
This policy applies to all institutional data within the institution's stewardship. It encompasses data stored on servers, databases, workstations, mobile devices, and any other medium containing institutional information.
Reason for policy
In today's dynamic and technologically driven environment, the importance of a comprehensive enterprise-wide data backup policy cannot be overstated. Safeguarding institutional data is paramount not only for operational continuity but also to comply with various regulations, standards, and laws governing data protection. Compliance with these mandates necessitates a structured and diligently executed data backup policy to mitigate risks associated with data loss, corruption, and unauthorized access.
Roles and Responsibilities
Effective implementation of the data backup policy relies on the collaboration and accountability of various stakeholders within the institution. Each department and school is responsible for the creation, maintenance, execution, and testing of the backup system and strategy. The following roles and responsibilities are defined:
1. Department of IT (DoIT):
- Develop and maintain the overall data backup system.
- Execute and monitor scheduled backups.
- Conduct regular testing of backups.
2. Department and School Administrators:
- Collaborate on department-specific backup procedures.
- Ensure integration of backup procedures into workflows.
- Oversee day-to-day execution and testing at the departmental level.
3. End Users and Data Owners:
- Adhere to backup policies.
- Collaborate with IT for critical data inclusion.
- Participate in testing exercises.
4. Institutional Compliance Officer:
- Oversee compliance with backup policies.
- Ensure alignment with regulations and standards.
5. Senior Management:
- Provide support and resources for backup practices.
- Emphasize the importance of data backup in risk management.