IT Policy Management |
|||||||||||||||||||||
 |
|
||||||||||||||||||||
| The IT Policy Management section is responsible for the development and promulgation of statewide information technology (IT) policies established by the state chief information officer. State IT policies are in place to: | |||||||||||||||||||||
 |
Create a common framework for decision-making; | ||||||||||||||||||||
|
Establish expectations; | ||||||||||||||||||||
|
Inform of rights and responsibilities; | ||||||||||||||||||||
|
Establish consistent treatment; | ||||||||||||||||||||
|
Specify how law and core values will be applied; | ||||||||||||||||||||
|
Demonstrate good stewardship of public assets; and | ||||||||||||||||||||
|
Assist in the protection of public assets and information. | ||||||||||||||||||||
| State IT policies affect a wide variety of agencies. Therefore, the IT Policy Management section emphasizes a collaborative approach to policy development. Prior to adoption, each policy undergoes a rigorous research and development process that typically involves the contributions of state agencies, subject matter experts, expert advisory services and legal counsel. The IT Policy Management section strives to ensure that each policy is based on comprehensive research and evaluation. | |||||||||||||||||||||
Current Projects |
|||||||||||||||||||||
|
|||||||||||||||||||||
| IT Security Policy Development | |||||||||||||||||||||
| Over the past several years the Office of Information Technology has focused on the establishment of a common statewide information technology security policy foundation. The following proposed policies will complement the existing suite of Ohio IT security policies: | |||||||||||||||||||||
|
System Development Life Cycle Security | ||||||||||||||||||||
|
Configuration Management Security | ||||||||||||||||||||
|
Physical Security | ||||||||||||||||||||
| E-Government Policy Development | |||||||||||||||||||||
| The following proposed policy is part of a suite of e-government policies and is under development: | |||||||||||||||||||||
|
Web Site Content Framework | ||||||||||||||||||||
| Additional IT Policy Development | |||||||||||||||||||||
|
IT Contractor Debarment | ||||||||||||||||||||
|
Open Source Software Management | ||||||||||||||||||||
| IT Policy Revision | |||||||||||||||||||||
| State of Ohio IT policies are placed on a policy revision schedule based on the nature, volatility and visibility of the policy topic. Ohio IT security policies ITP-B.1 through ITP-B.12 are currently being reviewed by IT Policy Management and security subject matter experts. The following security-related policies are under review / revision as well: | |||||||||||||||||||||
|
ITP-E.1, "Disposal, Servicing and Transfer of IT Equipment" | ||||||||||||||||||||
|
ITP-E.7, "Business Resumption Planning" | ||||||||||||||||||||
|
ITP-E.8, "Use of Internet, E-mail and Other IT Resources" | ||||||||||||||||||||
|
ITP-H.2, "Use of State Telephones" | ||||||||||||||||||||
Statewide IT Policy Home - IT Policy Management Section - IT Standards Management Section IT Law & Policy Section - Rules, Policies, Standards, Procedures & Bulletins - Legislation Tracker Statewide IT Policy News - IT Policy FAQs - IT Rule FAQs - Policy Resources - Contact Us |
|||||||||||||||||||||