The Official Web site for the Office of Information Technology - UTSA

This document should be rendered in an HTML format with cascading style sheets and JavaScript turned on.

Office of Information Technology Home Page

Skip to Main Content

Skip to Navigation

Please take a few minutes to read our Accessibility Page which will make your visit through this Web site easier.

Copyright (c) 2010. The University of Texas at San Antonio. All rights reserved.

OIT Home > About OIT > Information Resource Standards > Backup & Data Recovery Standard

Enterprise Backup & Data Recovery

Institutional data and records must be protected and managed in such a way as to prevent loss or destruction. This standard applies to all individuals within the UTSA enterprise who are responsible for the installation and support of information resources, individuals charged with information resources security and Data Owners.

  1. All UTSA data must be backed up according to risk management plans developed by the Data Owner.

  2. Backup media must have, at a minimum, the following identifying markers that can be readily displayed by labels and/or a bar-coding system:

    1. System name

    2. Creation date

    3. Sensitivity Classification

    4. UTSA contact information

  3. Physical-access controls implemented at off-site backup storage locations must meet or exceed the physical access controls of the source systems. Additionally, backup media must be protected in accordance with the highest UTSA sensitivity level.

  4. A process must be implemented to verify the operability of the UTSA electronic information backup, including periodic testing, to ensure that backups are recoverable.

  5. Procedures involving UTSA and the off-site backup storage vendor(s), if any, must be documented and reviewed at least annually.

  6. Each department must maintain a documented recovery plan designed to restore service in the event of a disaster or significant outage.

References for This Standard:

Texas Administrative Code 202.75, (7),(E), Backup – Recovery.

Texas Administrative Code 202. 74 Business Continuity Planning

University of Texas System Information Resources Use and Security Policy,Procedures, section 5, Backup-Recovery of Network Servers and Data.

Last Revision:

August 20, 2010

Account Management

Disposal of Computers
Other Electronic Devices

Laptop Encryption

Policy Exception and Risk Assumption Procedures

Administrative/Special Access

E-Mail Management

Log-in Disclaimer

Security Monitoring

Application Registration

Incident Management

Network Access

Security Training

Enterprise Backup &
Data Recovery

Information Resource Use and Security (pending)

Network Configuration

Server Hardening

Change Management

Information Security Risk Assessment

Password

Software Licensing

Computer Naming Convention

Information Security Administrator (ISA)

Patch Management Standard

Threat Detection and Prevention

Configuration and Asset Management

Information Security Training Standard

Personal Computing

Unauthorized File Sharing

Copiers and Printers

Information Services Privacy

Physical Access

Vendor Access

Data Center

Internet Use

Portable Computing

Web Application Vulnerability Scanning

Data Classification

Intrusion Detection

Protection Against Malicious Software

Wireless Network

 

 

 

Workstation Operating Systems Support

Tools