Read the University’s Electronic Information Security Policy, and the
Electronic Data Backup Policy. Note that certain parts of the Security Policy
apply to computers (whether owned by the University or not) that you may have
at home, if these are connected to the University's data network (usually via
a modem of some kind).
Keep computers physically secure — lock unattended offices when
When you are viewing confidential information, be aware of whether others
can easily view your computer screen.
Set a screen-saver with a password on your PC, with an interval of five to
Do not leave machines logged on to administrative systems for long periods
Keep your password(s) safe — do not share them with others, and do not
write them down, except in some coded form known only to you. Change your
Do not use your Essex password or username for external internet sites that
allow you to choose a username and password to log in to them.
If a systems offers to ‘remember’ a username and password for you, say
Do not use Windows file sharing to share data on your hard drive. On a
Windows machine, if you do not need to give others access to shared printing
on your PC, then ensure that file and print sharing are disabled.
Make sure your machine is running ISS-recommended virus protection
Do not install or run any software (including scripts or macros) unless you
trust the source, and always check software for viruses first.
Do not run server software (for example web server software) on your
Set programs such as web browsers and e-mail clients to prompt you before
running any programs or scripts.
Back up important data regularly, or save them on a file space that is
backed up (such as your M-drive/home directory). Store safely any backup disks
or tapes you make yourself.
Take special care with confidential information held online. Particularly
sensitive information should not be kept on M-drives/home directories, and
email should be used with caution.
Do not retain sensitive information for longer than necessary.
Do not connect any systems or other networks, either directly or
indirectly) to the University data network without checking with ISS that it
is safe to do so. Do not dial out to another network (ISP) from a desktop
machine while it is still connected to the University's data network.
Do not set-up modems to receive incoming connections.
Power off your desktop machine at night.