File #: 20-00084    Version: 1
Type: Departmental Agenda Status: Agenda Ready
File created: 1/23/2020 In control: BOARD OF SUPERVISORS
On agenda: 2/4/2020 Final action: 2/4/2020
Title: HEARING - Consider recommendations regarding the Countywide Information Technology Governance Program, as follows: (EST. TIME: 30 MIN.) a) Receive and file the update on the Countywide Information Technology Governance Program Charter, Executive Information Technology Council Charter, Information Technology Policy Committee Charter, Information Standard Committee Charter, and Information Technology Administrative Manual; b) Approve the following Information Technology Policies; i) Information Technology Administrative Manual; ii) Cybersecurity Training Awareness Policy; iii) Password Policy; iv) Information Security Incident Management Policy; v) Third-Party Information Security Policy; and vi) Acceptable Use Policy; c) Approve the following Standards; i) Incident Management; and ii) Password Manager Digital Vault; and d) Determine that the proposed actions are related to general policy and procedure making and organizational or administrative activities of governments that wil...
Sponsors: GENERAL SERVICES DEPARTMENT
Attachments: 1. Board Letter, 2. Attach 1 - Information Technology Governance Program, 3. Attach 2 - Executive Information Technology Council Charter, 4. Attach 3 - Executive Information Technology Policy (Background), 5. Attach 4 - IT Policy Committee Charter, 6. Attach 5 - IT Policy Committee Policy (Background), 7. Attach 6 - IT Standards Committee Charter, 8. Attach 7 - IT Standards Committee Policy (Background), 9. Attach 8 - IT Administrative Manual, 10. Attach 9 - Cybersecurity Awareness Training Policy, 11. Attach 10 - Password Policy, 12. Attach 11 - Information Security Incident Management Policy, 13. Attach 12 - Third-Party Information Security Policy, 14. Attach 13 - Acceptable Use Policy, 15. Attach 14 - Incident Management, 16. Attach 15 - Password Manager Digital Vault, 17. Presentation, 18. Minute Order

Title

HEARING - Consider recommendations regarding the Countywide Information Technology Governance Program, as follows: (EST. TIME: 30 MIN.)

 

a) Receive and file the update on the Countywide Information Technology Governance Program Charter, Executive Information Technology Council Charter, Information Technology Policy Committee Charter, Information Standard Committee Charter, and Information Technology Administrative Manual;

 

b) Approve the following Information Technology Policies;

 

i) Information Technology Administrative Manual;

ii) Cybersecurity Training Awareness Policy;

iii) Password Policy;

iv) Information Security Incident Management Policy;

v) Third-Party Information Security Policy; and

vi) Acceptable Use Policy;

 

c) Approve the following Standards;

 

i) Incident Management; and

ii) Password Manager Digital Vault; and

 

d) Determine that the proposed actions are related to general policy and procedure making and organizational or administrative activities of governments that will not result in direct or indirect physical changes in the environment and is therefore exempt from the California Environmental Quality Act (CEQA) pursuant to CEQA Guideline section 15378 (b)(2) and (5).

 

COUNTY EXECUTIVE OFFICER’S RECOMMENDATION: APPROVE