Information is a valuable asset to Regional School Unit #57 (RSU 57) and must be protected from unauthorized disclosure, modification, and/or destruction. The goal of RSU 57’s Information Security Program is to ensure that the confidentiality, integrity, and availability of information are protected throughout its lifecycle.

The main objectives of the Information Security Program are to:

• Protect against any anticipated threats or hazards to the security or integrity of the information.

• Protect against unauthorized access to or use of such information that could result in substantial harm or inconvenience.

• Ensure the security and confidentiality of RSU 57’s information.

• Ensure the proper disposal of information and electronic media.

• Ensure the security of RSU 57’s IT infrastructure against unauthorized use.

RSU 57 has aligned its Information Security Program with the Framework for Improving Critical Infrastructure Cybersecurity as issued by the National Institute of Standards and Technology (NIST) on February 12, 2014, including updates issued as version 1.1 on April 16, 2018.

The document below lists controls RSU 57 has put in place to address the 5 functions and 23 categories identified in the Cybersecurity Framework. Additional controls are provided by RSU 57’s Incident Response Plan and Business Continuity Plan.

RSU 57 Information Security Program (approved May 2024)