IT PolicyExternal KB : IT Policy Activity, Dec 2018

IT Policy Activity, Dec 2018

Posted: 2018-11-27 09:00:00 Expiration: 2018-12-27 19:00:00

Disclaimer: This news item was originally posted on 2018-11-27 09:00:00. Its content may no longer be timely or accurate.

The itpolicy-announce list communicates policy changes and opportunities to participate in development. Anyone may join by sending a blank email to join-itpolicy-announce@lists.wisc.edu.

Previous month | Next month

Change History

Published on 11/29.

Opportunities to help shape IT policy

IT policies under development or revision

Of particular note during the 2018-2019 academic year:

A Continuous Diagnostics and Mitigation implementation plan will be developed. It will include elements of: IT asset inventory management of both hardware and software, endpoint security, monitoring and vulnerability scanning, security information and event management (SIEM), account privilege management, and mobile device management.
A credentials policy and standards will be developed. It will include identity assurance and authentication. Passwords and multi-factor authentication will be covered.
The Web Accessibility Policy and Procedures will be reviewed and revised.

To comment, or otherwise get involved, please email policy@cio.wisc.edu.

New / Revised Documents

The Network Firewall Policy and Implementation Plan was approved by the Information Technology Committee on Nov 16.
The HIPAA Description, and the FERPA Description were both revised. There were improvements to the text and references. No substantive changes.

See the Last Reviewed / Revised List for earlier activity.

For questions or comments, please email policy@cio.wisc.edu.

Endorsement / Approval Pending

The IT Policy Principles and Procedures is being reviewed by the Information Technology Committee at their Dec 21 meeting, 10:00-11:00, Rm 3139 CS. A vote on approval is anticipated in January.

To comment, or suggest additional documents that need to be developed or revised, please email policy@cio.wisc.edu.

Forums / Events

The next IT Policy Forum will be on Feb 14, 1:00-2:30, Rm 159 Education Bldg (1000 Bascom Mall).

Tentative topic: Continuous Diagonostics and Mitigation
Discussion Notes on Credentials Policy from the Nov IT Policy Forum.

To comment, or suggest future topics, please email policy@cio.wisc.edu.

Teams / Governance

Information Technology Committee (ITC)

Fri, Dec 21, 10:00-12:00, Room 3139 CS.
- Continued discussion of the IT Policy Principles and Procedures.

Policy Planning & Analysis Team (PAT) and its subcommittees

Fri, Dec 7, 1:00-2:00, Rm 3139AB CS.
- Coordination of Data Policy and IT Policy. Discussion.
- The PAT is a subcommittee of ITC. You are welcome to attend.
PAT Executive Committee meeting, Fri, Dec 21, 1:00-2:00, Rm 2147 CS.
- The PAT EC plans the PAT agenda and manages the PAT subcommittees. You are welcome to attend.
PAT Subcommittees:
- Communications Subcommittee (ongoing): Communications of policy development and published IT policies, including IT Policy Forums, the IT Policy Knowledgebase, and policy-related web pages on it.wisc.edu. This month's meeting is Wed, Dec 19, 10:00-11:00, Rm 2281 CS. You are welcome to attend.
- Portfolio Subcommittee (ongoing): Organizing and managing IT policies as portfolios of related policies. This month's meeting will be Wed, Dec 19, 2:30-3:30, Rm 2147 CS. You are welcome to attend.
- Process Subcommittee (ongoing): Monitoring and improving the process of IT policy development and review. This month's meeting will be Tue, Dec 11, 3:30-4:30, Rm 2281 CS. You are welcome to attend.
- For more information please contact policy@cio.wisc.edu.

Previous month | Next month

-- IT Policy: GARY DE CLUTE