Print
Back to Calendar
Return
ARF- 5517
2. A.
Special BOS Meeting
Meeting Date:
06/25/2019
Submitted For:
Kelly Riggs
Submitted By:
Kelly Riggs, Information Technology Director
Department:
Deputy County Mgr/Library District
Division:
Information Technology
Information
Request/Subject
Proposed new Gila County Information Technology policies.
Background Information
The Information Technology Department has many processes in place to manage and maintain Gila County information systems, but does not have any written policies to guide the effective management of these systems. The development of new information technology policies support the ongoing corrective action plans detailed in the County’s response to security audit findings. The policies were reviewed and revised as necessary by the County Attorney's Civil Division. The policy committee also reviewed the proposed policies and provided further revisions in May 2019.
On June 18, 2019, the following three new policies were presented to the Board of Supervisors for consideration of adoption. Upon review of the new policies, the Board members agreed they are necessary security policies that need to be adopted.
Evaluation
The recent financial security audits identified a lack of policies and deficiencies in the existing Gila County's information technology policies. The corrective action plan detailed to the Auditor General identified creating security policies to provide effective control measures over the County’s information technology processes.
Conclusion
The following new policies need to be adopted by the Board of Supervisors: Policy No. BOS-IT-002 - I
nformation Security Access Control
; Policy No. BOS-IT-003 -
Information Security Risk Assessment
; and Policy No. BOS-IT-004 -
Contingency Plan for County Information Systems.
Recommendation
Administration recommends the Board of Supervisors' consideration to adopt new proposed information technology policies (as listed above).
Suggested Motion
Information/Discussion/Action to adopt the following new Information Technology policies: Policy No. BOS-IT-002 - Information Security Access Control; Policy No. BOS-IT-003 - Information Security Risk Assessment; and Policy No. BOS-IT-004 - Contingency Plan for County Information Systems.
(Kelly Riggs)
Attachments
BOS-IT-002 Information Security Access Control
BOS-IT-003 Information Security Risk Assessment
BOS-IT-004 Contingency Plan for County Information Systems
AgendaQuick©2005 - 2024 Destiny Software Inc., All Rights Reserved