1. According to the *Ministry of Education Official Letter No. 1112703805*, dated September 5, 2022, titled “Minutes of the 2022 National University and College Chief Information Security Officers Meeting,” private universities and colleges may refer to the **“Information and Communication Security Maintenance Guidelines for National Universities and Colleges”** when establishing their cybersecurity incident response mechanisms and related protection measures.
2. The *Ministry of Education Official Letter No. 1100179797*, dated December 30, 2021, stipulates the **“Information and Communication Security Maintenance Guidelines for National Universities and Colleges,”** which aim to promote university-wide implementation of the **Cyber Security Management Act** and its related regulations.
3. To assist schools in implementing the aforementioned guidelines, the **Education Institutions Information Security Verification Center**—in accordance with the Ministry of Education’s guidelines—has revised the execution strategies by referencing the **Cyber Security Management Act** and its sub-laws, relevant policies of the Executive Yuan and the Ministry of Education, on-site inspection checklists, protection baseline control measures, and experiences from actual audits.
 These revised strategies are provided as references for the Chief Information Security Officers (CISOs) and Information Security Promotion Teams of each university.
4. An introduction to the execution strategies and related resources is available at the following link: https://sites.google.com/email.nchu.edu.tw/isms-strategy/