4-29-26: CUNY Information Security Policies and Procedures

TO: John Jay College Community
FROM: Joseph Laub, Chief Information Officer
DATE: April 29, 2026
RE: CUNY Information Security Policies and Procedures

The security of John Jay College’s information systems and data is a shared responsibility. I am writing to remind all faculty and staff of their obligation to comply with the policies, standards, and procedures established by the CUNY Information Security Office and published at security.cuny.edu.

These policies and procedures are designed to protect sensitive college and university data, ensure regulatory compliance, and safeguard our academic and administrative operations from increasing cybersecurity threats.

All employees are expected to:

• Adhere to all applicable information security policies and procedures
• Complete required cybersecurity awareness and compliance training
• Protect credentials and use multi-factor authentication where required
• Properly handle, store, and transmit sensitive information
• Promptly report suspected phishing attempts, data breaches, or security incidents

As cyber threats continue to evolve, maintaining a strong security posture requires consistent vigilance from every member of our community. If you have questions about your responsibilities or need assistance, please contact the IT Help Desk at 212.237.8200.

Thank you for your continued cooperation in helping protect the college’s information assets.