HSC Information Security Office

The UNM Health Sciences Center works to continuously improve IT security safeguards. IT Security assessments are conducted to confirm the effectiveness of (IT) security controls. Improvements are planned and implemented to enhance the effectiveness of most critical controls. Adjustments are made as new IT threats are identified.

IT staff and Security Analysts work with HSC workforce members when new threats are reported. Security awareness and secure computing practices are communicated and updated through annual training.

What is Information Security?

Information Security is about the protection of information and information systems from unauthorized access, use, disclosure, disruption, modification or destruction. The CIA triad (confidentiality, integrity and availability) encompasses the core principles of information security. The goals are the same for IT Security, Information Security or CyberSecurity: protect confidential information and systems and ensure the integrity and availability of business information assets.

IT Security Analysts are information technology specialists who are accountable for designing and maintaining safeguards that secure electronic data as it is stored, processed, transmitted and/or shared. IT Security Analysts at the HSC provide the following IT security services and support:

  • Administrative safeguards—Management of the selection and execution of security measures
  • Technical safeguards—Automated processes to provide data protection and access control
  • Physical safeguards—Protection of electronic systems, related buildings and equipment from environmental hazards and unauthorized intrusion