Please report any problems to the Shared Tools Team at st-help@doit.wisc.edu    Broken Links? Missing Macros? WIKI Retiring Plugins
Child pages
  • IT Policy Forum 2014-04 Discussion Results
Skip to end of metadata
Go to start of metadata

Group 1

    1. How do you currently make people in your unit aware of campus or local IT policies?
      • hopeless – 17 buildings across campus – weird collision of Profs, Research, Departments
      • walk down hall plus Green Bay, Milwaukee, Superior, Manitowoc
      • no management support, FERPA
      • what we do; time & money
         
    2. What would be the most effective ways to increase general awareness of IT policies?
      • personalize

      • protect jobs

      • no time in agenda

      • social media?                                    

        • which?

        • how?

        • who maintains?

      • yearly awareness online quiz
         

    3. What current IT policies should be  emphasized?

      • BYOD – collate its applicability

      • “don’t look for work” [there is already too much work to do]

      • no enforcement capabilities

      • credibility

      • pay
         

    4. What would be the best ways to make IT policy documents easy to find?
      • “don’t look for work” [there is already too much work to do]
      • motivation?
      • disciplinary/directive

Group 2:

    1. How do you currently make people in your unit aware of campus or local IT policies?
       
      In general most are available online. Very important policies require a test for knowledge of those policies (HIPPA and PCI compliance), otherwise policies are generally only communicated through teachable moments.
      • Unit 1
        • Mostly just focus on communicating loaner equipment policies via website
        • Policies are communicated every time a new user sits down at a machine and they have to accept the terms
        • Everything else is just communicated when it comes up
      • Unit 2
        • has a lot of policies and procedures
        • wait until someone says they want something then go over the policy or procedure
        • Need to take test for PCI compliance
      • Unit 3
        • HIPPA policies
        • Need to take a test to know information
        • Other policies available on website
      • Unit 4
        • Teachable moments
        • Changes in policy are communicated thorough email
            
    2. What would be the most effective ways to increase general awareness of IT policies?
       
      Each group has different stakeholders:
       
      • Use the language that make people realize that it is targeted to them specifically and have impact

      • Start with a “why” does this apply to me or why should I care

      • How do we communicate the 5 policies to new staff? - at least get it to all employees once, most people are completely unaware of the policy site

      • Communicate with HR in these areas to make sure that each new individual involved in IT knows the existence of the site and that the 5 policies exist

      • “This is the policy except for these groups or services” this makes policies easy to ignore

      • One day a year where the CIO pushes out “These are our policies and updates” or on the news banner that comes up on the MyUW or wisc.edu

      • It often is not mentioned that work hardware does not belong to the individual permanently, but only while they are employed with the group. Hard from separating how we use our own cell phones for work.

    3. What current IT policies should be  emphasized?
       
    4. What would be the best ways to make IT policy documents easy to find?
      • To find polices, just make things easier to search with keywords and good naming

      • Need a one stop shop for all policies or global search for policies specifically

      • Issues for when there are policies, but no way to enforce them, or they aren’t enforced at all. Just there for when it’s convenient to enforce it, but not always enforced.

      • How many languages do policies appear in?

Group 3

    1. How do you currently make people in your unit aware of campus or local IT policies?
      • Unit 1
        • Intranet – weekly digest, email
      • Unit 2
        • low hanging fruit – grad student training, would be good onboarding
      • Unit 3
        • Intranet, FAQ
      • Unit 4
        • Logins – defaults to policy page – They have more
      • An application
        • Policy page before first login. FERPA, other...
      • General
        • Who reads these?
           
    2. What would be the most effective ways to increase general awareness of IT policies?
      • Succinct, brief, understandable
      • Friendly, short
      • Link to full policy
      • Onboarding tutorial possibility
      • Unit 1 (as in (a) above)
        • HR does own orientation @ 2-3 months in and review
        • IT staff – how to get to?
      • Unit 4 (as in (a) above)
        • Subtle diffs in unit security and CIO policies
        • 1st emphasis on local policies
        • Students – tutorial, perhaps when NetID is activated
           
    3. What current IT policies should be  emphasized?
      • Unit 1 (as in (a) above)
        • Large scale data storage for restricted data
      • An application (as in (a) above)
        • restricted data used for testing is on encrypted disk
      • FERPA data, restricted data solutions
      • VPN used for RDP
      • Communications on current projects
         
    4. What would be the best ways to make IT policy documents easy to find?
      • Regular communications from [who?] on upcoming projects/services
      • Email to all IT staff on campus
      • Often gaps between policy and implementation

Group 4

No notes available

 

 

  • No labels