IT Policies Overview

The document proposes 5 new IT policies for all employees to address the changing technology landscape and security needs. The policies are: 1) Computer and Technology Use, 2) Electronic Communications, 3) Internet Usage, 4) Information Security, and 5) Information Technology Procurement. Each policy expands on existing policies to establish expectations around acceptable use, monitoring, privacy, business vs personal use, and security controls. If approved, the policies would be enforced through progressive discipline and require developing draft documents, focus group feedback, communication planning, and alignment with HR. The goal is to update policies to reflect how organizations now use technology differently and increased security risks.

Uploaded by

Dan Rainey

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

70 views

IT Policies Overview

Uploaded by

Dan Rainey

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PPTX, PDF, TXT or read online on Scribd

You are on page 1/ 12

WC T

E
I RE

V
I
D
ER S

VV I C E
OE R

S S
E
I
IT
ICY

LNE
POA I

R
T
I AN
D

THE NEED FOR IT POLICIES

In the beginning IT was a back office function
Todays organizations use technology
differently
Consumerization is driving new technology
adoption
There are bad guys everywhere

CURRENT POLICIES
Current DWSD policies
Acceptable Use Policy 2010-1
City of Detroit IT policies
Internet usage
Email usage
Workstation usage

PROPOSING 5 NEW ALL EMPLOYEE IT

POLICIES
1. Computer and Technology Use
2. Electronic Communications
3. Internet Usage
4. Information Security
5. Information Technology Procurement
And a supplemental set of IT policies for
IT, PNSS and any other set of users with
elevated IT privileges

PROPOSED ALL-EMPLOYEE POLICIES

1. Computer and Technology Use
Covers parts of acceptable use policy 2010-1 and
CoD Workstation Usage Policy
Expands acceptable use by:
adding expectations around user monitoring,
protection of technology assets, business use,
information and asset ownership, and user privacy
the application of various controls including those
needed to manage risk, intellectual property,
hardware and software, configurations, physical
security, network access, and backup and recovery

PROPOSED ALL-EMPLOYEE POLICIES

2. Electronic Communications Policy
Covers parts of acceptable use policy 2010-1
and CoD Email Usage Policy
Expands these by:
adding expectations around acceptable use,
user privacy and legal rights including system
access by technical staff, system monitoring,
business vs. personal use and records and
records retention responsibilities.
Establishing responsibilities for contractors and
for texting and instant messaging.

PROPOSED ALL-EMPLOYEE POLICIES

3. Internet Usage Policy
Covers parts of acceptable use policy 2010-1
and CoD Internet Usage Policy
Expands these by:
adding expectations around acceptable use,
user privacy and legal rights, system
monitoring, business vs. personal use and
access to external sites.
Prohibits the creation of unapproved internet
access and the acquisition of unapproved
internet (Cloud) services.

PROPOSED ALL-EMPLOYEE POLICIES

4. Information Security Policy

Covers parts of acceptable use policy 2010-1 CoD

Internet Usage, Workstation Usage and Email Usage
policies
Expands these by:
Establishing an Information Security Program
Requiring access controls on all systems
Creating a Cyber Security incident handling process
Prohibiting possession of unauthorized security
toolsets and establishing technology disposal
standards/processes

PROPOSED ALL-EMPLOYEE POLICIES

5. Information Technology Procurement
Policy
IT hardware, software and services to be
purchased with IT approval and according to IT
standards
New IT hardware, software or services are to be
selected with Information Technology Services
input and approval
Open source, freeware prohibited w/o IT approval
IT Service Providers to contract through
Information Technology Services

IT POLICY ENFORCEMENT
Policy #s 1 4 to be enforced through
Human Resources Policy for Progressive
Discipline
Depending on violation, discipline may
include discharge
Policy #5 is to be enforced via purchasing
processes
Supplemental policies to be enforced
through Human Resources Policy for
Progressive Discipline

NEXT STEPS
Develop draft IT policies
All-employee set of five we discussed today
Supplemental set for IT and PNSS (and any
other set of users with elevated IT privileges)
Establish a project to implement polices
Assemble a focus group for vetting of polices
to organization.
Communication plan & labor input
Alignment with Office of Director and HR
policies

QUESTIONS?

THANK YOU FOR YOUR ATTENTION

TODAY

First Things First New Concept English by L G Alexander 058252329x
100% (4)
First Things First New Concept English by L G Alexander 058252329x
5 pages
Data Science Download Syllabus PDF
50% (2)
Data Science Download Syllabus PDF
6 pages
RD045 Requirement Gathering
100% (1)
RD045 Requirement Gathering
5 pages
Employee Internet Use Monitoring and Filtering Policy
No ratings yet
Employee Internet Use Monitoring and Filtering Policy
3 pages
Coaching My People
No ratings yet
Coaching My People
6 pages
Qos4Real: A Value Proposition For
No ratings yet
Qos4Real: A Value Proposition For
4 pages
Maximize Efficiency How Automation Can Improve Your Loan Origination Process
No ratings yet
Maximize Efficiency How Automation Can Improve Your Loan Origination Process
7 pages
MEPI Small Grants Proposal Template - Final
No ratings yet
MEPI Small Grants Proposal Template - Final
4 pages
Network Management Policy Template
No ratings yet
Network Management Policy Template
5 pages
RSD All Market Segments - Insurer Confirmation and Transaction Diary - v1
No ratings yet
RSD All Market Segments - Insurer Confirmation and Transaction Diary - v1
25 pages
Invensis Learning ITIL Foundation Examination Full Length Practice Test ITIL Training
No ratings yet
Invensis Learning ITIL Foundation Examination Full Length Practice Test ITIL Training
18 pages
Employee Loan Management System Project Report
No ratings yet
Employee Loan Management System Project Report
9 pages
Penetration Test Project
No ratings yet
Penetration Test Project
5 pages
The State of IT Systems Management
No ratings yet
The State of IT Systems Management
9 pages
ITIL Practice Test 1
No ratings yet
ITIL Practice Test 1
13 pages
Itsm Exam
100% (1)
Itsm Exam
40 pages
Audit of Insurance
100% (1)
Audit of Insurance
26 pages
Ameyo Product Screenshots-FusionCX
No ratings yet
Ameyo Product Screenshots-FusionCX
64 pages
Senior Vice President Lending in Dallas FT Worth TX Resume Kenneth Opie
No ratings yet
Senior Vice President Lending in Dallas FT Worth TX Resume Kenneth Opie
2 pages
An Integrative Perspective On Information Management
100% (1)
An Integrative Perspective On Information Management
22 pages
An Airport Flights Database System Report
No ratings yet
An Airport Flights Database System Report
25 pages
Profit Center
No ratings yet
Profit Center
8 pages
Developing and Implementing Commercial Loan Pricing Models
0% (1)
Developing and Implementing Commercial Loan Pricing Models
5 pages
MIS and Credit Monitoring Project
No ratings yet
MIS and Credit Monitoring Project
48 pages
Credit Management
No ratings yet
Credit Management
14 pages
Report On Ehr System
No ratings yet
Report On Ehr System
24 pages
Financial Management For IT Services
No ratings yet
Financial Management For IT Services
10 pages
FailureDetector ds14
No ratings yet
FailureDetector ds14
33 pages
Factors For Rise in Npas
No ratings yet
Factors For Rise in Npas
10 pages
AI Impacting Financial Services Industry
No ratings yet
AI Impacting Financial Services Industry
3 pages
Elaine Kassin PM Functional 072017 A
No ratings yet
Elaine Kassin PM Functional 072017 A
6 pages
121-Online Movie Ticket Booking System - Synopsis
No ratings yet
121-Online Movie Ticket Booking System - Synopsis
6 pages
Request For Proposal: Sales Force Automation: EVP Sales RSM SM ASM AM
No ratings yet
Request For Proposal: Sales Force Automation: EVP Sales RSM SM ASM AM
5 pages
Micro Credits Management System For ABS Credits
No ratings yet
Micro Credits Management System For ABS Credits
246 pages
Manager Credit Collections A/R in ST Louis MO Resume George Ulses
No ratings yet
Manager Credit Collections A/R in ST Louis MO Resume George Ulses
2 pages
Client Server Computing
No ratings yet
Client Server Computing
4 pages
Bakery & Confectionary
No ratings yet
Bakery & Confectionary
26 pages
Lending Tree System Abstract
No ratings yet
Lending Tree System Abstract
8 pages
2010 Smart Grid System Report
No ratings yet
2010 Smart Grid System Report
120 pages
Collections Credit Manager Director in Los Angeles CA Resume Cheryl Rubin
No ratings yet
Collections Credit Manager Director in Los Angeles CA Resume Cheryl Rubin
2 pages
2011 Technical Systems Audit Report
No ratings yet
2011 Technical Systems Audit Report
57 pages
COBIT Focus ISO 38500 Why Another Standard PDF
No ratings yet
COBIT Focus ISO 38500 Why Another Standard PDF
3 pages
Account Management Policy
No ratings yet
Account Management Policy
5 pages
SDI Benchmarking Report 2017
No ratings yet
SDI Benchmarking Report 2017
29 pages
Post Implementation Report - Guide
0% (1)
Post Implementation Report - Guide
7 pages
Capacity Management and VMware
100% (2)
Capacity Management and VMware
12 pages
Cradit Analysis
No ratings yet
Cradit Analysis
8 pages
SCDIS 200 Information Security and Privacy Standards
No ratings yet
SCDIS 200 Information Security and Privacy Standards
201 pages
GSMA SAS SM Remote Audits Auditee Self Assessment v1 - 1
No ratings yet
GSMA SAS SM Remote Audits Auditee Self Assessment v1 - 1
235 pages
AI+Generated+Cybersecurity+Prompts
No ratings yet
AI+Generated+Cybersecurity+Prompts
5 pages
Internal Control and Compliance Risk and To Compare The Existing Credit Policy of Dhaka Bank Limited
No ratings yet
Internal Control and Compliance Risk and To Compare The Existing Credit Policy of Dhaka Bank Limited
22 pages
Open Data Privacy
No ratings yet
Open Data Privacy
111 pages
Knowledge Management System1
No ratings yet
Knowledge Management System1
9 pages
Portfolio Management Services
No ratings yet
Portfolio Management Services
19 pages
Mba SWOT Analysis Report PDF
No ratings yet
Mba SWOT Analysis Report PDF
11 pages
SRC TSCM
No ratings yet
SRC TSCM
2 pages
Easy Loan Management System
No ratings yet
Easy Loan Management System
9 pages
Small and Medium Enterprises
No ratings yet
Small and Medium Enterprises
9 pages
Information Security in Banking Sector PDF
100% (1)
Information Security in Banking Sector PDF
24 pages
06 Service Portfolio Management Process PDF
No ratings yet
06 Service Portfolio Management Process PDF
9 pages
Data Privacy Statement English
100% (1)
Data Privacy Statement English
5 pages
Service asset and configuration management Complete Self-Assessment Guide
From Everand
Service asset and configuration management Complete Self-Assessment Guide
Gerardus Blokdyk
No ratings yet
Continuity of Operations The Ultimate Step-By-Step Guide
From Everand
Continuity of Operations The Ultimate Step-By-Step Guide
Gerardus Blokdyk
No ratings yet
CS102 DICT2013 Fundamental of Data Structurr and Algoritm
No ratings yet
CS102 DICT2013 Fundamental of Data Structurr and Algoritm
6 pages
DANEO 400 AppNote Testing SV Publishers With DANEO 400 2017 ENU
No ratings yet
DANEO 400 AppNote Testing SV Publishers With DANEO 400 2017 ENU
26 pages
Peran Damkar Sebagai Upaya Pemadaman Dan Penyelamatan Kebakaran
No ratings yet
Peran Damkar Sebagai Upaya Pemadaman Dan Penyelamatan Kebakaran
13 pages
KCS713 Cloud Computing
No ratings yet
KCS713 Cloud Computing
1 page
Integration Server Clustering in Containers - Software AG Wiki - Software AG Communities
No ratings yet
Integration Server Clustering in Containers - Software AG Wiki - Software AG Communities
13 pages
Troubleshooting Oracle Clusterware
No ratings yet
Troubleshooting Oracle Clusterware
9 pages
2009 06
No ratings yet
2009 06
350 pages
Model View Controller: Graphical User Interfaces
No ratings yet
Model View Controller: Graphical User Interfaces
18 pages
" Android Os ": A Seminar Synopsis Report ON
No ratings yet
" Android Os ": A Seminar Synopsis Report ON
25 pages
Example Test Plan
No ratings yet
Example Test Plan
15 pages
Iran (Islamic Republic Of) : Cybersecurity Policy Structure
No ratings yet
Iran (Islamic Republic Of) : Cybersecurity Policy Structure
4 pages
Introduction To Python Programming
No ratings yet
Introduction To Python Programming
17 pages
TeXstudio - User Manual
No ratings yet
TeXstudio - User Manual
29 pages
Proof AS
No ratings yet
Proof AS
6 pages
Tutorial 8 - Catering Case Study SN
No ratings yet
Tutorial 8 - Catering Case Study SN
4 pages
Katalog PLC
No ratings yet
Katalog PLC
51 pages
Performance Evaluation of Distance Metrics in The Clustering Algorithms
No ratings yet
Performance Evaluation of Distance Metrics in The Clustering Algorithms
14 pages
Partial Fraction Expansion
No ratings yet
Partial Fraction Expansion
2 pages
Chapter 1 Databases and Database Users
100% (1)
Chapter 1 Databases and Database Users
7 pages
UL Certificate NewAge Fire Hose
No ratings yet
UL Certificate NewAge Fire Hose
1 page
Exercise Simple Linear Regression
100% (1)
Exercise Simple Linear Regression
5 pages
SOP Wetstock Inventory Reconciliation Log
No ratings yet
SOP Wetstock Inventory Reconciliation Log
2 pages
Notes For ST U1
No ratings yet
Notes For ST U1
16 pages
Fluke Bangladesh 368 FC Leakage Current Clamp Meter
No ratings yet
Fluke Bangladesh 368 FC Leakage Current Clamp Meter
4 pages
ERP Case Study: Assignment #2
No ratings yet
ERP Case Study: Assignment #2
8 pages
Computer Shop System: Project Report On
No ratings yet
Computer Shop System: Project Report On
49 pages
ClassDojo Parent and Student Invites For Year 10
No ratings yet
ClassDojo Parent and Student Invites For Year 10
16 pages