Purpose: Restrict access to sensitive data based on job roles.
Scope: Applies to all systems and data within Quincy College's IT infrastructure.
Policy: Implement role-based access control (RBAC).
Procedures:
- Assign roles and permissions based on job functions.
- Conduct quarterly reviews of access permissions.
- Immediately revoke access upon job role changes or termination.
Original: July 2024