Page 8 - New Employee Booklet - Portrait
P. 8
Important Cybersecurity Do’s & Don’ts
Always
Create strong passwords that are easy to remember but difficult to guess; and ensure your
passwords are different from those used for non‐UHN accounts (e.g., personal banking password).
Store sensitive information on UHN‐approved devices and storage networks (e.g., UHN‐provided
OneDrive, SharePoint, or network drive).
Use caution when opening e‐mail attachments or clicking on links received from unknown senders.
When in doubt, call the help desk or forward the email to spam@uhn.ca.
Complete your required annual Cyber Security training, which can be located within MyLearning.
Report suspected or confirmed security incidents immediately to your manager/supervisor, or to
your local help desk. Examples of privacy breaches and security incidents include, but are not
limited to:
Attempts (either failed or successful) to gain unauthorized access to sensitive information
Theft or loss of an IT resource that contains sensitive information, even if it is
encrypted
Malware infection on an IT resource
Compromised passphrase/password
Never
Allow another person to use your ID and password. You are accountable for all actions performed with
your credentials. Never share your passwords with others.
Use your personal email account (e.g., Hotmail, Gmail, etc.) to conduct UHN business.
Download sensitive/confidential information on unencrypted devices. Opening or viewing file
attachments may cause them to download on your device.
Upload, share, send or receive sensitive/confidential information to/using unapproved applications, file-
hosting systems, or websites (e.g., Google Drive, Dropbox, Slack, etc.).
Leave your workspace without logging off systems, or locking up sensitive/confidential information.
Questions or Concerns?
For more information, please contact digitalsecurity@uhn.ca