Status and Details

Status and Details

This page contains information about the status, approval and implementation of this document, contact details for enquiries about document application/interpretation, and a brief summary of changes between this and the previous version.

Information Technology and Security Policy

Show Field Notes
Status Current Indicates if this version of the document is in effect (Current), yet to come into effect (Future), or expired (Historic).
Effective Date 19th October 2020 This is the date on which this version of the document came into effect.
Review Date 12th December 2022 The next review of this document is scheduled to commence on this date.
Approval Authority Vice-Chancellor's Executive The noted authority approved this is version of the document.
Approval Date 1st September 2020 This is the date on which this version of the document was approved by the authorised authority.
Expiry Date Not Applicable This is the date on which this version expires. It may still apply, conditionally, after this date.
Policy Author Sinan Erbay
Chief Information Officer
 This is the officer generally responsible for day to day administrative matters.
Policy Owner Teresa Finlayson
Chief Operating Officer
 This is the senior officer with responsibility for the document.
Enquiries Contact ITS Governance, Risk and Compliance General enquiries should be directed to the officer/area listed.

Summary of Changes from Previous Version

In 2020, RMIT launched a new database driven policy management system and migrated its existing suite of policy documents into the new policy register. This is the first version of this document to be published using the new system. The document has been re-formatted (e.g. numbering conventions, fonts) to enable publication in the new database driven register, but is otherwise reflective of the approved version that was in effect at the time the new system/register was launched.


This document was first approved by the Vice-Chancellor’s Executive on 12 December 2019. The approved version of this document took effect on 2 March 2020 (the first effective date) and corresponds to version 1.0 as it appeared in the former policy register.



02/08/2021: Division name changed from Internal Audit, Compliance Risk and Regulation (IACRR) to Risk, Audit and Compliance (RAC)