IT PolicyExternal KB : IT Policy Activity, Feb 2019

IT Policy Activity, Feb 2019

Posted: 2019-01-28 09:00:00   Expiration: 2019-02-28 19:00:00

The itpolicy-announce list communicates policy changes and opportunities to participate in development. Anyone may join by sending a blank email to join-itpolicy-announce@lists.wisc.edu.

Previous month | Next month

Change History

• Published on 01/31. Updated on 2/18 and 2/25.

Opportunities to help shape IT policy

Of particular note during the 2018-2019 academic year:

• A Continuous Diagnostics and Mitigation implementation plan will be developed. It will include elements of: IT asset inventory management of both hardware and software, endpoint security, monitoring and vulnerability scanning, security information and event management (SIEM), account privilege management, and mobile device management.

• An IT Credentials Policy and standards will be developed. It will include identity assurance and authentication. Passwords and multi-factor authentication will be covered.

• The Web Accessibility Policy and Procedures will be reviewed and revised. The revised policy will cover more than web technology, and will be renamed the "Digital Accessibility Policy"

• Several policies and standards will be reviewed and revised in the Spring of 2019:

  • Email Server Policy
  • Guest NetID Policy
  • IP version 4 Allocation Policy
  • NetID Appropriate Use Standard
  • Password Policy and Standard
  • UDS Responsible Use Policy

• For a more in depth presentation of major policy initiatives, please see: IT policies under development or revision
• To comment, or otherwise get involved, please email policy@cio.wisc.edu.

New / Revised Documents

• No changes in January 2019.

• Please see the Last Reviewed / Revised List for earlier activity.
• For questions or comments, please email policy@cio.wisc.edu.

Endorsement / Approval Pending

• The IT Policy Principles and Procedures is being reviewed by the Information Technology Committee at their March meeting on the third Friday of the month, 10:00-12:00, Rm 3139 CS.

• To comment, or suggest additional documents that need to be developed or revised, please email policy@cio.wisc.edu.

Forums / Events

• An IT Policy Forum was held on Feb 14, 1:00-2:30, Rm 159 Education Bldg (1000 Bascom Mall).

  Topic: Continuous Diagnostics and Mitigation

• To comment, or suggest future topics, please email policy@cio.wisc.edu.

Teams / Governance

Information Technology Committee (ITC)

• Fri, Feb 15, 10:00-12:00, Room 3139 CS.

• The Information Technology Committee is the faculty advisory body for policy and planning for information technology throughout the university. It is composed of faculty, academic staff and students.

Policy Planning & Analysis Team (PAT) and its subcommittees

• Mon, Feb 11, Notes.

  • Discussion of compliance strategy in the IT Policy Principles and Procedures.
  • Discussion of plans for development of IT Credentials Policy.

  • The PAT is a subcommittee of ITC. Please see the PAT meeting schedule.

• PAT Executive Committee (ongoing): Plans the PAT agenda and manages the PAT subcommittees. Please see the PAT EC meeting schedule.

• PAT Subcommittees:

  • Communications Subcommittee (ongoing): Communications of policy development and published IT policies, including IT Policy Forums, the IT Policy Knowledgebase, and policy-related web pages on it.wisc.edu. Please see the PAT Communications Meeting Schedule.

  • Portfolio Subcommittee (ongoing): Organizing and managing IT policies as portfolios of related policies. Please see the PAT Portfolio Meeting Schedule.

  • Process Subcommittee (ongoing): Monitoring and improving the process of IT policy development and review. Please see the PAT Process Meeting Schedule.

• You are welcome to attend any of these meetings. For more information please contact policy@cio.wisc.edu.

Previous month | Next month

-- IT Policy: GARY DE CLUTE