IT PolicyExternal KB : IT Policy Activity, December 2016

IT Policy Activity, December 2016

Posted: 2016-11-23 09:00:00 Expiration: 2016-12-29 18:00:00

Disclaimer: This news item was originally posted on 2016-11-23 09:00:00. Its content may no longer be timely or accurate.

The itpolicy-announce list helps communicate changes in policy and opportunities to participate in the development process. Anyone may join by sending a blank email to join-itpolicy-announce@lists.wisc.edu.

Previous month | Next month

New / Revised Documents

Restricted Data Security Management Policy and Procedures.

The deadline for reports has been extended one year, to Dec 31, 2017. No reports are due in 2016.
The provisions mandating annual discovery, reduction and protection of SSN's have not been suspended.
The policy will continue to apply only to SSN's until Dec 31, 2017. This may be further extended.

See the Last Reviewed / Revised List for earlier activity.

Documents Currently Under Review

Draft of "Cybersecurity Risk Management Policy". Endorsed by Teaching and Learning Technology Advisory Group (TLTAG) on Nov 30, Research Technical Advisory Group (RTAG) on Dec 20. There wil be additional review in January and February.

To comment, or suggest additional documents that need to be developed or revised, please email policy@cio.wisc.edu.

Forums / Events

The next IT Policy Forum is anticipated in early Feb, 2017. More details in Jan.

To comment, or suggest future topics, please email policy@cio.wisc.edu.

Teams / Governance

Continuous Diagnostics and Mitigation Policy Team (CDM)

Dec 07 Notes.
- Discussion of "Policy" theme.
- Review the first draft of the text for the "Operations" and "Governance" themes.
Dec 21 meeting canceled.

The CDM team is a sub-team of UW-MIST, and is advisory to the CISO and IT Governance. Anyone may attend. The team meets the 1st and 3rd Wednesday of the month, 3:00-4:00, Rm 2281 CS, and will complete its work by the end of Jan 2017. To participate, contact policy@cio.wisc.edu.

Core Infrastructure Services Group (CISG)

More information as it become available...

Divisional Technology Advisory Group (DTAG)

Dec 13, 3:00-4:30, Union S. (Check TITU).

IT Professionals Team

Dec 12 Notes.
- Getting organized.
- Review results from the Nov 1, IT Policy Forum.

The IT Professionals team is a short-term team that is advisory to the CIO. The team is drafting guidelines, best practices, and advice for UW_Madison IT Professionals. Anyone may attend. The team meets the 2nd Monday of the month, from 2:00-3:00, and plans to complete its work by the end of Mar 2017. To participate, contact policy@cio.wisc.edu.

Information Technology Committee (ITC)

More information as it becomes available...

The ITC is the shared governance advisory body, composed of faculty, academic staffs, and students, for information technology policy and planning throughout the University. Anyone may attend. Meetings usually occur on the 3rd Friday of the month, 10:00-12:00, Rm 3139 CS. (No meetings in June, July or August.)

Policy Planning Team (PPT)

Dec 06 Notes.
- Global Firewall Policy.
- Organizing IT Policies by Audience.
- Initial planning for Feb IT Policy Forum.
Dec 20 meeting canceled.

The PPT is advisory to the CISO and CIO on issues related to IT Policy plans, process, and communications. Anyone one may attend. Faculty, staff and students at UW-Madison may join. Meetings are normally on the 2nd and 4th Tuesday of the month. To participate, contact policy@cio.wisc.edu.

Research Technology Advisory Group (RTAG)

Dec 20. Endorsed Cybersecurity Risk Management Policy.

RTAG advises the Vice Chancellor for Research and Graduate Education in meeting their responsibility to ensure that the policies, practices, and resources around research cyberinfrastructure and information technology are most effectively aligned to support and advance the vibrant research programs at the UW-Madison.

Teaching and Learning Technology Advisory Group (TLTAG)

Nov 30 meeting:
- Cybersecurity Risk Management Policy was endorsed by TLTAG, with some recommended changes.

UW-Madison Information Security Team (UW-MIST)

Dec 01 Notes.
- Cybersecurity Data Management Plan.
- Guidance for Initial Implementation of Advanced Threat Protection. Expresses commitment to academic freedom and personal privacy.
- Targeted alerts discussion.

UW-MIST is advisory to the CISO and IT Governance. Anyone may attend. Voting members are appointed. Faculty, staff and students at UW-Madison may join as members at large. Meetings are on the 1st Thursday of the month, 2:00-3:30. To participate, contact cybersecurity@cio.wisc.edu.

Previous month | Next month

-- IT Policy: GARY DE CLUTE