IT PolicyExternal KB : IT Policy Activity, October 2016

IT Policy Activity, October 2016

Posted: 2016-09-29 08:00:00 Expiration: 2016-10-27 16:00:00

Disclaimer: This news item was originally posted on 2016-09-29 08:00:00. Its content may no longer be timely or accurate.

The itpolicy-announce list helps communicate changes in policy, and provides opportunities to participate in the development process. Anyone may join. Please email join-itpolicy-announce@lists.wisc.edu.

Previous month | Next month

New / Revised Documents

None.

See the Last Reviewed / Revised List for earlier activity.

Documents Currently Under Review

Draft of "Cybersecurity Risk Management Policy and Procedures". Reviewed by UW-MIST on 09/01. More review needed in October and beyond.
Draft of "Data Classification to Support System Security Policy and Procedures" (revision of the "Sensitive Information Definition").

To comment, or suggest additional documents that need to be developed or revised, please email policy@cio.wisc.edu.

Forums / Events

Next IT Policy Forum, Tuesday, November 01, 09:30-11:00, Rm 159 Education Bldg, 1000 Bascom Mall. Topic: "Being an IT Professional at UW-Madison: Guidelines, Best Practices, and Advice".

To comment, or suggest future topics, please email policy@cio.wisc.edu.

Teams / Governance

Continuous Diagnostics and Mitigation Policy Team (CDM)

Aug 04 UW-MIST meeting. CDM team delivered Interim recommendations on "monitoring".
Oct 05 Notes.
- Start discussing the "mitigation" portion of "monitoring and mitigation".
- Identifiied themes. Top two were "Services" and "Operations". Organized sub-teams.
Oct 19 Notes.
- "Services" and "Operations" theme reports.
- Prioritize remaining themes.
- Respect for Academic Freedom and Personal Privacy.

The CDM team is a sub-team of UW-MIST, and is advisory to the CISO and IT Governance. Anyone may attend. The team meets the 1st and 3rd Wednesday of the month, 3:00-4:00, Rm 2281 CS, and will complete its work by the end of December.

UW-Madison Information Security Team (UW-MIST)

Sep 01 Notes.
- Reviewed draft of "Charter for Advanced Threat Protection (ATP) Steering Committee".
- Reviewed draft of "Cybersecurity Risk Management Policy and Procedures".
Oct 06 Notes
- Guest Speaker: Mike Lehman, Special Advisor to the Chancellor.
- Cybersecurity Awareness Month presentation.
- Advanced Threat Protection (ATP) Steering Committee report.

UW-MIST is advisory to the CISO and IT Governance. Anyone may attend. Voting members are appointed. Faculty, staff and students at UW-Madison may join as members at large. Meetings are on the 1st Thursday of the month, 2:00-3:30.

Policy Planning Team (PPT)

Sep 13 Notes.
- Reviewed draft revision of "Access Control Services Policy and Procedures".
- Reviewed draft of "Confidentiality Agreement for IT Staff" (text not yet ready for general review.)
Sep 27 Notes.
- IT Policy Communications -- itpolicy-announce list.
- Comparison of five new UW System cybersecurity policies, with the related UW-Madison IT policies.
Oct 11 Notes.
- Possible relationship of PPT to new IT Governance.
- Planning for Nov IT Policy Forum.
Oct 25 Notes.
- Relationships between multiple policy development programs.
- Planning for Nov IT Policy Forum.

The PPT is advisory to the CISO and CIO on issues related to IT Policy plans, process, and communications. Anyone one may attend. Faculty, staff and students at UW-Madison may join. Meetings are normally on the 2nd and 4th Tuesday of the month.

Previous month | Next month

-- IT Policy: GARY DE CLUTE