{"id":12685,"date":"2026-06-04T13:26:18","date_gmt":"2026-06-04T17:26:18","guid":{"rendered":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/"},"modified":"2026-06-04T13:51:27","modified_gmt":"2026-06-04T17:51:27","slug":"written-information-security-plan-wisp","status":"publish","type":"page","link":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/","title":{"rendered":"Written Information Security Program (WISP)"},"content":{"rendered":"<h2>Purpose<\/h2>\n<p>This is the public-facing version of Trinity College\u2019s Written Information Security Program (WISP). It summarizes how the College protects sensitive information and is written for students, employees, visitors, and members of the public. Detailed internal procedures and technical standards are maintained separately to support security operations and compliance obligations.<\/p>\n<h2>Program Statement<\/h2>\n<p>Trinity College is committed to protecting the confidentiality, integrity, and availability of sensitive information. This Written Information Security Program (WISP) describes the administrative, technical, and physical safeguards the College uses to protect Personal Information and Nonpublic Financial Information, and to meet applicable legal and regulatory requirements.<\/p>\n<p>The WISP aligns with widely recognized security and privacy practices, including the NIST Cybersecurity Framework, and is supported by related College policies and standards. If a more specific College policy applies to a situation, that policy should be followed.<\/p>\n<h2>Scope<\/h2>\n<p>This Program applies to Trinity College employees (including faculty and staff), contractors and consultants, and other individuals or entities that access, store, transmit, or process College information on Trinity\u2019s behalf.<\/p>\n<p>It covers information handled for College operations, whether managed on-campus or through approved third-party services.<\/p>\n<h2>Definitions<\/h2>\n<ul>\n<li><strong>Data:<\/strong> Information in any form (electronic or paper) that the College creates, receives, stores, or uses to support College operations, including information processed by approved third-party service providers.<\/li>\n<li><strong>Data classification:<\/strong> A way of grouping College information by sensitivity so that appropriate safeguards and handling requirements are applied.<\/li>\n<li><strong>Personal Information (PI)<\/strong> &#8211; As defined by Conn. Gen. Stat. \u00a7 36a-701b: an individual&#8217;s first and last name (or first initial and last name) combined with any of the following:\n<ul>\n<li>Social Security number<\/li>\n<li>Driver&#8217;s license or state-issued identification card number<\/li>\n<li>Financial account, credit, or debit card number, with or without any required access code or password<\/li>\n<li>Passport number, alien registration number, or other government-issued identification number<\/li>\n<\/ul>\n<\/li>\n<li><strong>Nonpublic Financial Information (NFI)<\/strong> &#8211; As defined under the Gramm-Leach-Bliley Act (GLBA) and 16 CFR Part 313: any record containing nonpublic financial information about a student or other party with a College relationship, in paper, electronic, or other form. This includes information provided by or obtained about a student or third party in connection with obtaining, using, or servicing a financial product or service through the College.<\/li>\n<\/ul>\n<h2>Program Ownership and Responsibilities<\/h2>\n<p>Trinity College assigns responsibility for the administration of the WISP to the Chief Information Security Officer (CISO), who coordinates with Information Technology Services and relevant campus partners.<\/p>\n<p>The CISO may designate qualified College personnel or groups to assist with implementing, maintaining, and monitoring this Program.<\/p>\n<p>Individuals who handle College information are expected to follow applicable policies and standards, use approved services for sensitive data, and promptly report suspected security incidents.<\/p>\n<h2>Governance and Oversight<\/h2>\n<p>The College reviews and maintains the WISP as part of its overall information security governance and compliance program.<\/p>\n<p>Requests for exceptions to this Program must be reviewed and approved through the College\u2019s established governance processes.<\/p>\n<h2>Data Classification<\/h2>\n<p>The College classifies information based on sensitivity, compliance requirements, and risk, and applies handling requirements accordingly.<\/p>\n<table style=\"width: 100%;border-collapse: collapse\">\n<tbody>\n<tr>\n<th style=\"border: 1px solid #cccccc;padding: 10px;text-align: center\">Level<\/th>\n<th style=\"border: 1px solid #cccccc;padding: 10px;text-align: center\">Description<\/th>\n<\/tr>\n<tr>\n<td style=\"border: 1px solid #cccccc;text-align: center\"><strong>Level 4<\/strong><\/td>\n<td style=\"border: 1px solid #ccc\">Highly sensitive information protected by law, regulation, or contract. Unauthorized disclosure could cause serious harm to individuals or the College.<\/td>\n<\/tr>\n<tr>\n<td style=\"border: 1px solid #cccccc;text-align: center\"><strong>Level 3<\/strong><\/td>\n<td style=\"border: 1px solid #ccc\">Confidential information that is not intended for public release. Unauthorized disclosure could cause significant harm to individuals or the College.<\/td>\n<\/tr>\n<tr>\n<td style=\"border: 1px solid #cccccc;text-align: center\"><strong>Level 2<\/strong><\/td>\n<td style=\"border: 1px solid #ccc\">Internal-use information that is not typically shared publicly. Unauthorized disclosure could cause limited harm or operational impact.<\/td>\n<\/tr>\n<tr>\n<td style=\"border: 1px solid #cccccc;text-align: center\"><strong>Level 1<\/strong><\/td>\n<td style=\"border: 1px solid #ccc\">Public information that may be shared openly. Standard security practices still apply.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>Risk Management<\/h2>\n<p>The College identifies and assesses risks to sensitive information, including risks related to unauthorized access, system compromise, data loss, and disruptions to operations.<\/p>\n<ul>\n<li>Unauthorized access or misuse of sensitive information<\/li>\n<li>Malicious software, phishing, and other cyber threats<\/li>\n<li>Accidental disclosure or loss of information<\/li>\n<li>Service disruptions, disasters, or other events that impact operations<\/li>\n<\/ul>\n<p>Risk assessments are performed at least annually and when significant changes occur. The College selects, implements, and updates safeguards based on risk assessment results, compliance requirements, and evolving threats.<\/p>\n<h3>Administrative Safeguards<\/h3>\n<ul>\n<li><strong>Access control:<\/strong> Access to sensitive information is limited to authorized individuals with a legitimate business or educational need, and access is removed when no longer needed.<\/li>\n<li><strong>Service provider oversight:<\/strong> Vendors and service providers that handle sensitive information are evaluated as part of due diligence and are expected to maintain appropriate security and privacy practices. Contracts require providers to protect the information they process for the College, and the College conducts oversight appropriate to the risk.<\/li>\n<li><strong>Security testing:<\/strong> The College performs periodic security assessments and testing to identify and address vulnerabilities.<\/li>\n<li><strong>Payment card information:<\/strong> When the College processes payment card transactions, it follows applicable payment card security standards and maintains related procedures.<\/li>\n<li><strong>Incident response:<\/strong> Suspected or confirmed security incidents involving sensitive information are promptly investigated, contained, remediated, and reported as required by law and College procedures, including breach notification obligations where applicable.<\/li>\n<li><strong>Training and awareness:<\/strong> Employees receive periodic security awareness training, and additional training is provided based on role and access to sensitive information.<\/li>\n<li><strong>Secure disposal:<\/strong> Sensitive records are retained only as long as needed and are securely disposed of when no longer required.<\/li>\n<\/ul>\n<h3>Technical Safeguards<\/h3>\n<ul>\n<li><strong>Authentication<\/strong>\n<ul>\n<li>Accounts use secure authentication practices, including multi-factor authentication where appropriate.<\/li>\n<li>Privileged (administrative) access is restricted and managed with additional safeguards.<\/li>\n<li>Access is removed or adjusted when roles change or individuals leave the College.<\/li>\n<\/ul>\n<\/li>\n<li><strong>Network and Endpoint Security<\/strong>\n<ul>\n<li>The College uses security tools and processes to help detect, prevent, and respond to cyber threats.<\/li>\n<li>Institution-owned devices are managed and kept up to date with security patches.<\/li>\n<li>Protective controls are used to reduce the risk of data loss and unauthorized disclosure.<\/li>\n<\/ul>\n<\/li>\n<li><strong>Encryption and Storage<\/strong>\n<ul>\n<li>Sensitive information is stored using College-approved services and configurations.<\/li>\n<li>Encryption is used to protect sensitive information in transit and, where appropriate, at rest.<\/li>\n<li>Mobile devices that access sensitive information use appropriate security protections.<\/li>\n<\/ul>\n<\/li>\n<li><strong>Access Controls<\/strong>\n<ul>\n<li>Access to sensitive information is granted based on least privilege and job responsibilities.<\/li>\n<li>Access is periodically reviewed to help ensure it remains appropriate.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<p><strong>Health information (as applicable):<\/strong> When the College handles protected health information, it uses appropriate safeguards and, where applicable, follows HIPAA requirements.<\/p>\n<h3>Physical Safeguards<\/h3>\n<ul>\n<li>Sensitive paper records are secured (for example, in locked files or controlled areas) when not in use.<\/li>\n<li>Reasonable precautions are taken to protect sensitive information when it must be transported or used outside secured areas.<\/li>\n<li>When sharing sensitive paper records with third parties, the College uses appropriate secure handling practices.<\/li>\n<\/ul>\n<p><strong>Travel and sensitive information:<\/strong> When traveling, community members should take reasonable precautions to protect sensitive information and use College-approved tools for storage and transmission.<\/p>\n<h2>Password Requirements<\/h2>\n<p>The College maintains password and authentication requirements to reduce the risk of unauthorized access. Requirements may vary by system based on risk and regulatory needs.<\/p>\n<ul>\n<li>Use strong, unique passphrases (do not reuse passwords across services).<\/li>\n<li>Do not share passwords\/passphrases or approve unexpected sign-in prompts.<\/li>\n<li>Use strong multi-factor authentication methods.<\/li>\n<\/ul>\n<p>If you believe your account may be compromised, change your password promptly (if you can) and contact the College\u2019s IT support resources for assistance.<\/p>\n<h2>Enforcement<\/h2>\n<p>Failure to follow this Program and related College policies may result in administrative action under applicable College processes and may have legal or regulatory implications where sensitive information is involved.<\/p>\n<h2><b><span data-contrast=\"none\">Standards and Regulations<\/span><\/b><b><span data-contrast=\"none\">\u00a0<\/span><\/b><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">This Program is intended to\u00a0comply with\u00a0the following standards:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<ul>\n<li><a href=\"https:\/\/www.cga.ct.gov\/2021\/sum\/pdf\/2021SUM00119-R02HB-06607-SUM.pdf\"><span data-contrast=\"none\">Connecticut Public Act No. 21-119, Section 1(b)-(d)<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.nist.gov\/cyberframework\"><span data-contrast=\"none\">NIST Cybersecurity Framework (NIST CSF)<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/csrc.nist.gov\/pubs\/sp\/800\/171\/r3\/final\"><span data-contrast=\"none\">NIST SP 800-171\u00a0<\/span><\/a><span data-contrast=\"auto\">and\u00a0<\/span><a href=\"https:\/\/csrc.nist.gov\/pubs\/sp\/800\/53\/r5\/upd1\/final\"><span data-contrast=\"none\">NIST SP 800-53<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.ecfr.gov\/current\/title-16\/chapter-I\/subchapter-C\/part-314\"><span data-contrast=\"none\">FTC Safeguards Rule (16 CFR Part 314)<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.govinfo.gov\/app\/details\/USCODE-2024-title15\/USCODE-2024-title15-chap94-subchapI-sec6801\"><span data-contrast=\"none\">Gramm-Leach-Bliley Act (GLBA), 15 U.S.C. \u00a7 6801(b) and \u00a7 6805(b)(2)<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/studentprivacy.ed.gov\/ferpa\"><span data-contrast=\"none\">Family Educational Rights and Privacy Act (FERPA)<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/law.justia.com\/codes\/connecticut\/title-36a\/chapter-669\/section-36a-701b\/\"><span data-contrast=\"none\">Connecticut General Statutes \u00a7 36a-701b\u00a0<\/span><\/a><span data-contrast=\"auto\">and\u00a0<\/span><a href=\"https:\/\/law.justia.com\/codes\/connecticut\/title-42\/chapter-743dd\/section-42-471\/\"><span data-contrast=\"none\">\u00a7 42-471<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.pcisecuritystandards.org\/standards\/\"><span data-contrast=\"none\">Payment Card Industry Data Security Standards (PCI-DSS)<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.hhs.gov\/hipaa\/for-professionals\/compliance-enforcement\/index.html\"><span data-contrast=\"none\">Health Insurance Portability and Accountability Act (HIPAA), as applicable to PHI<\/span><\/a><span data-ccp-props=\"{&quot;201341983&quot;:0,&quot;335559740&quot;:276}\">\u00a0<\/span><\/li>\n<\/ul>\n<h2><b><span data-contrast=\"none\">Related Policies<\/span><\/b><b><span data-contrast=\"none\">\u00a0<\/span><\/b><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<ul>\n<li><a href=\"https:\/\/www.trincoll.edu\/wp-content\/uploads\/2025\/04\/Trinity-College-Acceptable-Use-Policy-REVISED-4.3.25-added-revision-date.pdf\"><span data-contrast=\"none\">Acceptable Use Policy<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.trincoll.edu\/wp-content\/uploads\/2022\/02\/TC-Policy-on-IT-Security.pdf\"><span data-contrast=\"none\">Information Security Policy<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/information-technology-policies-procedures\/data-classification-collaboration\/data-classification\/\"><span data-contrast=\"none\">Data classification and handling standards<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<li><a href=\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/reporting-an-information-security-incident\/\"><span data-contrast=\"none\">Incident reporting guidance<\/span><\/a><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<p><b><span data-contrast=\"auto\">Questions and reporting<\/span><\/b><span data-contrast=\"auto\">: If you have questions about this Program, or want to report a suspected security issue, contact the Information Security team at security@trincoll.edu.<\/span><\/p>\n<p><b><span data-contrast=\"auto\">Additional\u00a0resources<\/span><\/b><span data-contrast=\"auto\">: Information technology policies and guidance are available through the College\u2019s\u00a0<\/span><a href=\"https:\/\/www.trincoll.edu\/lits\/technology\/tech-support\/\"><span data-contrast=\"none\">IT website<\/span><\/a><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2>Review and Revision<\/h2>\n<p>The College reviews this Program at least annually and may update it as needed to address changes in risk, technology, and regulatory requirements.<\/p>\n<p><strong><em>Program Owner:<\/em><\/strong> <em>Chief Information Security Officer (CISO)<\/em><\/p>\n<p><strong><em>Approved by:<\/em><\/strong> <em>VP &amp; Chief Information Officer (CIO)<\/em><\/p>\n<p><strong><em>Date Posted:<\/em><\/strong> <em>May 1, 2026<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Purpose This is the public-facing version of Trinity College\u2019s Written Information Security Program (WISP). It summarizes how the College protects sensitive information and is written for students, employees, visitors, and members of the public. Detailed internal procedures and technical standards are maintained separately to support security operations and compliance obligations. Program Statement Trinity College is [&hellip;]<\/p>\n","protected":false},"author":336,"featured_media":0,"parent":11137,"menu_order":3,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-12685","page","type-page","status-publish","hentry"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.5 (Yoast SEO v25.8) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Written Information Security Program (WISP) - Library &amp; Information Technology Services<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Written Information Security Program (WISP)\" \/>\n<meta property=\"og:description\" content=\"Purpose This is the public-facing version of Trinity College\u2019s Written Information Security Program (WISP). It summarizes how the College protects sensitive information and is written for students, employees, visitors, and members of the public. Detailed internal procedures and technical standards are maintained separately to support security operations and compliance obligations. Program Statement Trinity College is [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/\" \/>\n<meta property=\"og:site_name\" content=\"Library &amp; Information Technology Services\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-04T17:51:27+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/\",\"url\":\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/\",\"name\":\"Written Information Security Program (WISP) - Library &amp; Information Technology Services\",\"isPartOf\":{\"@id\":\"https:\/\/www.trincoll.edu\/lits\/#website\"},\"datePublished\":\"2026-06-04T17:26:18+00:00\",\"dateModified\":\"2026-06-04T17:51:27+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.trincoll.edu\/lits\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Technology\",\"item\":\"https:\/\/www.trincoll.edu\/lits\/technology\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Information Security\",\"item\":\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Governance Risk and Compliance\",\"item\":\"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/\"},{\"@type\":\"ListItem\",\"position\":5,\"name\":\"Written Information Security Program (WISP)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.trincoll.edu\/lits\/#website\",\"url\":\"https:\/\/www.trincoll.edu\/lits\/\",\"name\":\"Library &amp; Information Technology Services\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.trincoll.edu\/lits\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Written Information Security Program (WISP) - Library &amp; Information Technology Services","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/","og_locale":"en_US","og_type":"article","og_title":"Written Information Security Program (WISP)","og_description":"Purpose This is the public-facing version of Trinity College\u2019s Written Information Security Program (WISP). It summarizes how the College protects sensitive information and is written for students, employees, visitors, and members of the public. Detailed internal procedures and technical standards are maintained separately to support security operations and compliance obligations. Program Statement Trinity College is [&hellip;]","og_url":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/","og_site_name":"Library &amp; Information Technology Services","article_modified_time":"2026-06-04T17:51:27+00:00","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/","url":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/","name":"Written Information Security Program (WISP) - Library &amp; Information Technology Services","isPartOf":{"@id":"https:\/\/www.trincoll.edu\/lits\/#website"},"datePublished":"2026-06-04T17:26:18+00:00","dateModified":"2026-06-04T17:51:27+00:00","breadcrumb":{"@id":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/written-information-security-plan-wisp\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.trincoll.edu\/lits\/"},{"@type":"ListItem","position":2,"name":"Technology","item":"https:\/\/www.trincoll.edu\/lits\/technology\/"},{"@type":"ListItem","position":3,"name":"Information Security","item":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/"},{"@type":"ListItem","position":4,"name":"Governance Risk and Compliance","item":"https:\/\/www.trincoll.edu\/lits\/technology\/security\/governance-risk-and-compliance\/"},{"@type":"ListItem","position":5,"name":"Written Information Security Program (WISP)"}]},{"@type":"WebSite","@id":"https:\/\/www.trincoll.edu\/lits\/#website","url":"https:\/\/www.trincoll.edu\/lits\/","name":"Library &amp; Information Technology Services","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.trincoll.edu\/lits\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/pages\/12685","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/users\/336"}],"replies":[{"embeddable":true,"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/comments?post=12685"}],"version-history":[{"count":6,"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/pages\/12685\/revisions"}],"predecessor-version":[{"id":12705,"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/pages\/12685\/revisions\/12705"}],"up":[{"embeddable":true,"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/pages\/11137"}],"wp:attachment":[{"href":"https:\/\/www.trincoll.edu\/lits\/wp-json\/wp\/v2\/media?parent=12685"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}