ISO 27002 Standard Implementation and Technology Consolidation

In 2012, the UNC system adopted the ISO 27002 Code of Practice for Information Security Controls. Each university must comply with the controls in this standard and is audited by the state on its compliance. The University is embarking on a campus-wide implementation of this standard and consolidation of distributed technology systems and servers. 

ITS has developed an aggressive timeline for this implementation which will have a major impact on technology units across campus. Resources linked below provide more in-depth information about the ISO 27002 standard and its planned implementation and the consolidation of technologies. Questions regarding this initiative may be directed to the Office of the CIO at (336) 256-0543 or