AUDIT & ADVISORY SERVICES
Newsletter - Fall 2023
USC Aiken Fountain
In this issue:
  • Operational – Programs Involving Minors on Campus
  • IT Security – Cybersecurity Awareness Month
  • AAS Training Opportunities
  • USC Integrity Line
  • News Links
  • Contact Information
Operational - Programs Involving Minors on Campus
"A person's a person, no matter how small." - Dr. Seuss

As is common across Higher Education, USC offers programs for minors to participate in throughout the school year and over the summer.  These programs include, but are not limited to outreach activities, workshops, and academic and athletic camps.  While it is imperative that minors learn, grow, and have fun while participating in these programs, it is of utmost importance that their health and safety are prioritized above all else.

 

University policy UNIV 4.00, Programs Involving Minors (and related procedures "Additional Requirements for Designing and Operating Programs Involving Minors") was established by the University, " to ensure appropriate supervision and protection of minors who participate in University sponsored programs regardless of location."  UNIV 4.00 defines a minor as, “ a person(s) under the age of eighteen (18) who is not enrolled or accepted for enrollment at the University."

 

As required by Policy UNIV 4.00, University-sponsored programs involving minors must register the program with the Office of the General Counsel before the program commences using the Programs Involving Minors Registration Form.  If program leadership is unsure whether their program falls under this registration requirement, they should contact the Office of General Counsel for clarification.

 

Additional requirements in Policy UNIV 4.00 for University-sponsored programs involving minors include:

  • Immediately reporting any incident, disclosure, or suspected assault or abuse to University law enforcement.
    • Program staff must also complete the appropriate incident report form and email the form to: minors@mailbox.sc.edu.  This email address will automatically forward the incident report to the Office of the General Counsel, Human Resources, and Risk Management.
  • Ensuring that program staff having direct contact with minor participants have a background check no older than 3 years on record with the University at the time of hire and/or before beginning work with minors.
  • Exercising due diligence in designing programs in such a way as to reflect safety considerations for all minor participants.

 

The requirements listed above are just a few of the many requirements in Policy UNIV 4.00 for programs involving minors, so before you and/or your team initiate a University-sponsored program involving minors, make sure you have read, understand, and are in compliance with UNIV 4.00 and the "Additional Requirements for Designing and Operating Programs Involving Minors" procedures.

 

Additional University resources for Programs Involving Minors on Campus can be found at: 

https://sc.edu/about/offices_and_divisions/provost/policiesandprocedures/minors.php
IT Security - Cybersecurity Awareness Month

Since 2004, the President of the United States and Congress have declared October to be Cybersecurity Awareness Month, a dedicated month for everyone to work together to raise awareness about the importance of cybersecurity. 

 

2023 marks the 20th annual Cybersecurity Awareness Month and this year Cybersecurity and Infrastructure Security Agency (CISA) is launching a new awareness program that encourages 4 simple steps every American should take--not only during Cybersecurity Awareness Month, but every day of the year.

 

  1. Use strong passwords and a password manager: Strong passwords are critical to protecting data. They are long, random, unique, and include all four-character types (uppercase, lowercase, numbers, and symbols). Password managers are a powerful tool to help you create and store long, random, and unique passwords for each of your accounts. DoIT recommends using the password managers below to store and remember passwords and user IDs easy, as opposed to writing them down and leaving them in plain sight.

 

  1. Use multifactor authentication (MFA): You need more than a password to protect your online accounts and enabling MFA makes you significantly less likely to get hacked. University students and employees are already required to use MFA across systems such as PeopleSoft and all Outlook 365 applications. If you need additional information related to MFA, visit USC Multifactor Authentication.

 

  1. Recognize & report phishing: Phishing emails, texts, and calls are the number one way data gets compromised. Be cautious of unsolicited emails, texts or calls asking for personal information. Report phishing emails by simply clicking the Report Phishing Tab in the Header Section of the email (shown below).  Learn to recognize the signs of phishing and report these incidents to protect data and devices.

 

 

  

 

 
  1. Update software: DoIT uses IBM BigFix to update software and applications such as Adobe, Apple, Google, Microsoft, and Oracle.  It is important that these applications are updated so that they are compatible for the latest security patches.  If you are aware of any outdated applications or software, please Contact DoIT.

 

For more information about security awareness, visit Cybersecurity Awareness Month.
AAS Training Opportunities

Looking for training topics for your department meetings this fall? Audit & Advisory Services (AAS) is available to help! We are happy to join your team meeting, online or in-person, to provide brief training sessions (10-15 minutes) on Conflicts of Interest (COI).

 

AAS is also offering an in-person fraud awareness training, "Fraud: The Role You Play," on Thursday, November 2, 2023 through the Office of Organizational and Professional Development. For more information and to register, click here.

 

Please reach out to AAServcs@mailbox.sc.edu if you would like to arrange a training session for your team.
USC Integrity Line

The USC Integrity Line is an anonymous reporting system, administered by an independent third-party provider, Lighthouse Services, Inc. Use this service to report a concern about questionable or unethical behavior.

 
* * *

 

USC Integrity Line Reporting

 

You can report your concern anonymously to the USC Integrity Line:

Reports are shared with a select group of three individuals:

  • Chair of the Audit, Compliance and Risk Committee of the Board of Trustees
  • Chief Audit Executive
  • General Counsel

These individuals determine the appropriate path forward for investigating your report.

Click here for more information on the USC Integrity Line
 

Relevant University Policy:

University employees are expected to report any concerns regarding possible noncompliance with laws, regulations, and policies.
News Links
Contact Audit & Advisory Services
1600 Hampton St.
Suite 610
Columbia, SC 29208
 
Website: sc.edu/audit
Email: AAServcs@mailbox.sc.edu
Phone: 803-777-2752

Have suggestions or requests for future newsletter topics? Send us an email.
 

Archived Newsletters

Summer 2023

Spring 2023

Winter 2023

Fall 2022


 

Photos (from top to bottom): USC Union, USC Lancaster, USC Columbia, USC Beaufort, USC Upstate
View this email in your browser
You are receiving this email because of your relationship with Audit and Advisory Services. Please reconfirm your interest in receiving emails from us. If you do not wish to receive any more emails, you can unsubscribe here.

1600 Hampton St., Columbia, SC, 29208