Please report any problems to the Shared Tools Team at st-help@doit.wisc.edu    Broken Links? Missing Macros? WIKI Retiring Plugins
Child pages
  • CDM Policy Meeting 2016-05-20
Skip to end of metadata
Go to start of metadata

Continuous Diagnostics and Mitigation Policy Stakeholders Team

May 20, 2016, 1:00-2:00, Rm 103 Rust-Schreiner *

* Location of Rust-Schreiner building (Google Maps)

Wiki page: https://wiki.doit.wisc.edu/confluence/display/POLICY/CDM+Policy

Google Apps folder

Agenda

  1. Welcome, introductions
  2. IT Policy Process
    Handout: Executive Summary

    Background - Example deliverables:
  3. Ground Rules (see dratt below)
      
    Action:
    • OK.
        
  4. Draft Team Charter
    Handout: Charter

    Action:
    • Points to consider in modifying the charter, and in future meetings:
      • How not to be called "Big Brother"
      • Take a risk-based approach. Focus on top threats/vulnerabilities.
      • "Department Security Administrator" does not exist! Need to identify roles that actually do exist.
      • Do some research on CIC/other intitutions' CDM-like programs
      • Identify types of tools needed (can provide an example to illustrate the type)
        • Add to charter scope and deliverables: #7. Identify types of tools needed.
      • Consider the amount of staff it takes to use the tools
          
  5. Draft Work Plan
    Handout: Work plan

    Action:
    • OK.
        
  6. Meeting Schedule
    (In O365, at: CDM Policy Meetings, and below )

    Action:
    • Gary will scheduled the next four meetings in May-Jul.
    • Wait to schedule Oct-Dec meeting
        
  7. Next steps

    Action:

Ground Rules (draft)

  1. Everyone must be treated respectfully, whether present or not.
  2. Everyone present who wants to speak on a topic must have a chance to speak.
  3. Attend more often than not, and review materials when you can't attend.
  4. Don't be shy, or worry about perception of an idea - we need open borders for these discussions.
  5. Let's park side issues or extensive detail for future work by this team, or others.

Future agenda items

  • UW-MIST discussion results
  • Brainstorming
  • Identify major themes, prioritize
  • Work through a major theme (theme TBD)
  • ...(however many there are, reviewing draft recommendation language as we go...)
  • Review executive summary
  • Plan presentation to UW-MIST

Future Meetings

Parked Items

  • ...

Team Members

MemberDeptMemberDeptMemberDept
Steve Barnet (co-chair)ICECUBETomomi ImamuraCybersecurityCurt ShombergL&S MIS
Gary De Clute (facilitator)IT PolicyKalaichelvan JesuthasanHousingJustin VorelHuman Ecology
Dave De CosterCAEJeff Savoy (co-chair)CybersecuritySusan WeierL&S
Siggi EckhardtCybersecurityDan SimanekVCRGEJosh ZimmermanLibraries

Attachments

Contact

  • No labels