Backup Management

Introduction

Aimed at the University community, Concordia’s Backup Management guidelines emphasize data integrity, compliance with retention requirements, prevention of data loss, efficient data restoration, backup testing, and accountability. This guideline aims to ensure the protection, availability, and integrity of Concordia University's electronic information through comprehensive backup practices and adherence to security standards.

Why is this required? The Chief Information Security Officer issued this guideline under the Information Security Policy (VPS-33). 

What this means for you

Concordia Backup Management guidelines stipulate that individuals should classify data according to Concordia’s Data Classification Model, determine backup frequency based on data change rates,  prioritize physical storage security and encryption for confidential data, ensure compliance with retention schedules, define Recovery Time Objectives (RTOs), regularly test backups for integrity, and consider utilizing cloud backups and software (SAAS) providers with assistance from Concordia's Instructional and Information Technology Services.

Feedback

The Chief Information Security Officer is responsible for implementing, reviewing, and approving this guideline and for conducting regular reviews to ensure compliance with internal and external requirements. If you have any feedback or questions about this guideline, please email ciso@concordia.ca

For accessibility-related questions or feedback related to IT security incidents, email iits-accessibility@concordia.ca.