Securely enable world-class teaching, learning and research

The information security framework provides a baseline developed by the community, for the community in consultation with subject matter experts to:

  1. Enable the mission of the University.
  2. Increase trust and reduce risk.
  3. Address regulatory and legal requirements the University must meet.

Learn more about the components that frame information security practices and support informed decision making at U of T below.

Icon showing information security: two hands cradling a green shield with a white checkmark.

Information security procedures

Required practices for protecting digital assets, as developed through input from the Information Security Council and approved by the President or designate.

Procedure for ransomware payment decision

This procedure clarifies the standard as it relates to paying ransom to cyber criminals.