...
This policy applies to all directors, information resource owners and third parties who are responsible for University data or information resources, including research and secure research cloud.
Security Requirements
Lehigh’s Information Security Program (ISP) is built around NIST 800-171 controls and other control frameworks, regulations, and guidance (eg, FERPA, HIPAA, GDPR, PCI, and others). This section should reference which frameworks are relevant to this particular standard.
...