Corporate ICT Asset Management

Transcription

1 Policy Corporate ICT Asset Management Please note this policy is mandatory and staff are required to adhere to the content Summary A comprehensive program to monitor the location, use and value of all Information and Communications Technology (ICT) equipment and facilities must be established and maintained. Table 1 - Document details Publication date April 2009 Review date January 2014 Related legislation/applicable section of legislation Related policies, procedures, guidelines, standards, frameworks Replaces ICT Security Policy April 2009 Policy officer (position) Manager, ICT Infrastructure & Asset Management Policy officer (phone) Policy sponsor (position) Executive director responsible (position and office) Applies to Key words Status Approved by Assistant Director, ICT Technical Services Executive Director, Infrastructure All DECD Employees ICT, asset management Approved Executive Director, Infrastructure Approval date April 2009 Version Corporate ICT Asset Management April 2009

2 Table 2 - Revision record Date Version Revision description 2 Corporate ICT Asset Management April 2009

3 Table of Contents Policy... 1 Corporate ICT Asset Management... Error! Bookmark not defined. 1. Title Purpose Scope Policy detail Roles and responsibilities Monitoring, evaluation and review Definitions and abbreviations Supporting documents References...6 Appendix Corporate ICT Asset Management April 2009

4 1. Title Corporate ICT Asset Management 2. Purpose A comprehensive program to monitor the location, use and value of all Information and Communications Technology (ICT) equipment and facilities must be established and maintained. 3. Scope All DECD employees 4. Policy detail Assets Register Physical Assets Each physical asset above a defined value must be identified and recorded in an Asset Register which is maintained and reconciled by ICT Services. Asset Register Logical Assets All logical Assets comprising packaged software and developed application systems must be identified and recorded in an Asset Register which is maintained and reconciled by ICT Services. Asset Ownership and Protection of Intellectual Property Rights The ownership of, and responsibility for, all ICT equipment and information systems software is vested in ICT Services. This responsibility includes the protection of the Department for Education and Child Development (DECD) Intellectual Property rights over the software. Inventory Review Physical Assets A stock-take of all DECD ICT physical assets must be completed by ICT Services at least annually, and all discrepancies reconciled. Budgets All budgets relating to maintenance, operation and replacement of ICT assets are the responsibility of ICT Services. Asset Replacement A program for regular review and replacement of physical ICT assets must be established to ensure a flexible, effective and cost efficient ICT infrastructure is in place. Appropriate Use 4 Corporate ICT Asset Management April 2009

5 Staff must be conscientious in the business use of DECD information systems and facilities. All use must comply with policies relating to the internet, and acceptable use. Personal Use DECD staff are permitted reasonable personal use of DECD supplied ICT facilities and software as long as that use does not compromise or impact the security of those facilities, DECD information systems and DECD information and does not conflict with the Commissioner for Public Employment s Code of Ethics and DECD policies and standards. Unauthorised Equipment or Software Unauthorised equipment and unauthorised or unlicensed software must not be installed on, attached to or operated on any DECD ICT facilities. Any equipment or software identified as unapproved and/or unlicensed must be removed immediately. Software Inventory Control The purchase, installation, registration, upgrade, disposal and loan of software must be properly coordinated and controlled. Regular reviews must be conducted (via monthly monitoring reports) by the ICT Assets Coordinator Software. Illegal Software Use The number of user licences for approved software must not be exceeded by illegal copying or other means. The requirements of the Copyright Act 1986, as amended, applicable patent law and conditions of use restrictions must be strictly adhered to. 5. Roles and responsibilities Table 2 - Roles and responsibilities Role Authority/responsibility for 6. Monitoring, evaluation and review 5 Corporate ICT Asset Management April 2009

6 7. Definitions and abbreviations Table 3 - Definitions and abbreviations Term Meaning 8. Supporting documents The following whole-of-government policies and DECD policies are relevant and must be read in conjunction with this policy. DECD Policy ICT Security DECD Policy Internet Access and Use DECD Policy Access and Use DECD Standard - Corporate Managed Desktop Environment Information Technology Infrastructure Services Policy Telecommunications Services Policy Personal Computers Policy Microsoft Software MS Select Program Policy ICT Infrastructure Standards Policy 9. References N/A Appendix N/A 6 Corporate ICT Asset Management April 2009