View Agenda Item

Back to View Meetings Back to Agenda

Previous Item Next Item

Action 16.

Regular Board of Supervisors Meeting

Board of Supervisors

Meeting Date:: 05/24/2022
Title:: Revised IT Policy 1808 IT Risk Assessment
Submitted By:: Sharon Gilman, Board of Supervisors
Department:: Board of Supervisors

Presentation:

No A/V Presentation

Recommendation:

Approve

Document Signatures:

BOS Signature NOT Required

# of ORIGINALS
Submitted for Signature:

NAME
of PRESENTER:

Joe Casey

TITLE
of PRESENTER:

Chief Information Officer

Docket Number (If applicable):

Mandated Function?:

Local Mandate or Policy

Source of Mandate
or Basis for Support?:

11-251

Information

Agenda Item Text:

Approve the revisions to Policy 1808, Information Technology Risk Assessment, as provided in the attachments, effective July 1, 2022.

Background:

The Board of Supervisors has made efficient administrative practices and fiscal responsibility priorities under the Strategic Plan. As part of this effort, IT is making industry-recommended revisions to the risk assessment policy.

Policy 1808: Information Technology Risk Assessment: Revisions under Section III require County IT to conduct an annual risk assessment, and specifies that this assessment will include both internal and external penetration testing.

All county staff were provided an opportunity to review the policy and provide feedback prior to presentation to the Board. No significant concerns were expressed.

Department's Next Steps (if approved):

Set procedures for conducting annual risk assessments.

Impact of NOT Approving/Alternatives:

Policies will not meet industry best practices and lack transparency to departments.

To BOS Staff: Document Disposition/Follow-Up:

None

AgendaQuick™