IT SERVICE CONTINUITY AS RELATED TO THE MANAGEMENT OF ELECTRONIC RECORDS POLICY
|
|
- Julie Weaver
- 8 years ago
- Views:
Transcription
1 Department of Health Government of Western Australia IT SERVICE CONTINUITY AS RELATED TO THE MANAGEMENT OF ELECTRONIC RECORDS POLICY 2004
2 Document Control Date Version Notes Author 10/11/ Initial draft Geoff Graham (InfoHEALTH) 12/11/ Updated after review Geoff Graham (InfoHEALTH) 21/01/ Modified S. 4 Gopal Warrier 6/2/2004 Final Principal Information Officer Previous Editions: Nil Revision due: November 2005 Format: Microsoft Word 2000 Authorisation Mike Daube Director General Department of Health This policy has been authorised by- Date- File
3 CONTENTS 1. PURPOSE POLICY STATEMENT SCOPE STRATEGIES LEGISLATION AND STANDARDS GLOSSARY RESOURCES...7 APPENDIX A ELEMENTS OF A DISASTER RECOVERY PLAN...8 File
4 1. PURPOSE The Department has an obligation to ensure that electronic records are preserved and kept accessible for as long as they are required. Part of this requirement is that the records be protected from loss, either by disaster, human error or technical failure. This paper describes the Department s policy regarding the protection from unintended loss of all electronic records that are created and maintained in record keeping systems and business application systems so as to ensure that they satisfy record keeping requirements for operational and archival purposes over the medium to long term. 2. POLICY STATEMENT The Department shall maintain the Information Technology systems and processes to ensure that any electronic record of continuing value remains available and accessible and may be completely recovered in the event of its loss. 3. SCOPE This Policy applies to: All business application systems and records keeping systems that capture, create and store records as defined in the State Records Act 2000 and the Freedom of Information Act Employees of the WA government health sector, ultimately reporting through to the Minister for Health. This includes Department of Health (DoH) entities, public hospitals, public community health services, public pathology laboratories, public health and mental health clinics and services, public nursing homes, DoH contracted services and any other WA government health sector organisational entities. Administrative records should be managed in accordance with the Sate Records Office of Wester Australia General Disposal Authority (GDA) for Administrative Records see: Patient records in accordance with the Patient Information Retention and Disposal Schedule see: This policy does not prescribe specific technological solutions for the availability and recovery of electronic records over the long term. File
5 4. STRATEGIES Three requirements are demanded by this policy: Continued Availability The IT systems holding and making available the electronic records must have backup systems in place so that the records can continue to be available following a disaster. This requirement is addressed by building into the IT systems redundancy or backup systems that can take over in the event of failure of the primary systems. These systems must be capable of providing access to the vital records within a reasonable time following a failure of the primary system. Both the terms vital records and reasonable time must be assessed for each system with their values dependent on the criticality of the information held by the system and the consequences of its non-availability, including its impact on other record keeping systems. Record Recovery Any record that is lost, either through human error, technical failure or other factor, must be capable of being recovered in its entirety. This requirement is addressed by regularly copying (backing up) the records onto storage systems that are technically and physically separate from the original data. This must allow for the recovery of records that have been lost through any event from accidental erasure through to total catastrophic destruction. Standard IT practice must be followed to ensure that various generations of the copied data (backups) are retained over time to address the risk of error in the copied data How often the data is backed up and the time that backup generations are held must be assessed for each system and will depend on the volatility of the data and the risk of its loss. Suitable Processes A number of processes must be in place to ensure that the organisation maintains the efficiency of the technical systems defined above and is capable of restoring access to electronic records. These are: Application Classification Defines the reasonable time for the disaster recovery and vital records for the system. Backup Process Defines the process for backup of applications and data including the schedule, media rotation and media archiving. File
6 Backup Test Process Disaster Process Disaster Test Process Audit/Review Process Defines the process for testing backups including the schedule and reporting requirements. Defines a plan for management of a disaster situation including roles and responsibilities during the disaster, rules for declaring a disaster, notification, escalation, alternative facilities and recovery tasks. Defines the process for periodic testing of the Disaster Plan. The test should exercise the relevant roles and responsibilities and the infrastructure provided for recovery during a disaster situation. Defines the process for periodic auditing and review of the continuity provisions (processes and infrastructure) and the corresponding changes to the continuity provisions to maintain the required level of assurance regarding continuous service delivery. 5. LEGISLATION AND STANDARDS The following legislation and Standards apply to the management of electronic records over time: Evidence Act 1906 State Records Act 2002 Electronic Transactions Act 2003 Freedom of Information Act 1992 Public Sector Management Act 1994 International Standard on Records Management AS ISO15489 Refer to the Department of Health s Record Keeping Plan and Records Management Policy for further detailed information regarding electronic records. The definitive definition of the IT Service Continuity process is provided by the ITIL best practice framework ( ITIL Service Support, ISBN ). 6. GLOSSARY For a full glossary of terms used for records and electronic records see the Depart of Health s Record Keeping Plan: File
7 Additional terms are defined below: Disaster or Disaster Situation: An event that could not be normally be expected or anticipated and which disables the IT systems to the extent that prevents normal access to the electronic records. Data Backup: A copy of electronic records made for the purpose of safeguarding the data in the case of loss. 7. RESOURCES Electronic Records, The Impact of the Digital Age National Archives of Australia Corporate Memory in the Electronic Age Statement of a Common Position on Electronic Records Keeping e-government Policy Framework for Electronic Records Management Practical Experiences in Digital Preservation Conference State Records Standard 5: Management of Electronic Documents in Networked Computer Environments http: // State Records Standard 6: Management of Electronic Documents in Stand- Alone Computer Environments Public Records Policy : 8 Policy for the ongoing management of electronic records designated as having archival value. Retention of Laboratory Records and Diagnostic Material National Pathology Accreditation Advisory Council 2002 Standard on Recordkeeping in the Electronic Business Environment State Records NSW File
8 APPENDIX A ELEMENTS OF A DISASTER RECOVERY PLAN The following headings list the essential elements of a comprehensive Disaster Recovery Plan. Depending on the scale of the IT systems some, or all, of the following subjects should be addressed in the plan. Applications Each applications supported should be listed and allocated a priority so that, following an outage, the first effort can be given to recovering the most important applications first. The name of the group or organisation which has the responsibility to provide the main support for each application is also required to be listed. Computer System Components List the hardware and software components of each computer system used for the processing of the applications. Along with listing the vendor or supplier of the components, it is wise to list any alternative suppliers who may be approached if there is a need for urgent acquisition of replacement components or parts. Computer Room and Network Diagrams Copies of computer room diagrams and communication network diagrams in order to expedite recovery, replacement or reconstruction should some disastrous event occur. Computer System Security Description of the relevant features of the computer system security. Application and System Software Backup and Recovery Details of all relevant aspects of the recovery of backup data. Hardware and Software Maintenance Contracts Details of any hardware and software maintenance contracts including the vendor s name and contact details. Insurance Cover The details of any insurance cover for system components, communications equipment or the physical environment (although it must be understood that insurance cover is, by no means, an adequate alternative to a DRP). Arrangements for Replacement Equipment Description of any pre-arranged strategies (formally agreed) in place to make alternative equipment available should the normally-used equipment unavailable. Arrangements for Alternate Sites File
9 Description of any pre-arranged strategies in place to relocate critical equipment, staff and supplies. Disaster Recovery Personnel Contact List Being able to contact key people at any time 24 hours a day, seven days a week may mean the difference between continuing business or failing to do so. Key people may be members of staff, equipment vendors, support people, air conditioning engineers, etc. Maximum Acceptable Computer System Outages Key users must justify the maximum time they can tolerate an outage of each application. The size of each tolerable outage provides the window for recovery. Any recovery procedure must be developed to fit within this window. It is not justifiable to develop recovery strategies which cost more than the cost of the outage. Recovery Elapsed Time Estimates A listing of the likely timing of a recovery (to be compared with the figures listed above). Limp-along Procedures Limp-along procedures are sometimes known as Downtime Procedures. They refer to alternative procedures, which users will invoke should the availability of the computer system be lost for any period of time. These procedures typically involve manual systems or PC based processing and should be developed and maintained by the business units. File
OPERATIONAL CIRCULAR
OPERATIONAL CIRCULAR Enquiries to: Maureen Bradford - Tel: 9222 4300 Number: OP 1877/04 Supersedes: Date: 25 November 2004 Superseded by: File No: 95-00175 Subject: IT SERVICE CONTINUITY AS RELATED TO
More informationRECORDS MANAGEMENT POLICY
RECORDS MANAGEMENT POLICY POLICY STATEMENT The records of Legal Aid NSW are a major component of its corporate memory and risk management strategies. They are a vital asset that support ongoing operations
More information9. GOVERNANCE. Policy 9.8 RECORDS MANAGEMENT POLICY. Version 4
9. GOVERNANCE Policy 9.8 RECORDS MANAGEMENT POLICY Version 4 9. GOVERNANCE 9.8 RECORDS MANAGEMENT POLICY OBJECTIVES: To establish the framework for, and accountabilities of, Lithgow City Council s Records
More informationCORK INSTITUTE OF TECHNOLOGY
CORK INSTITUTE OF TECHNOLOGY RECORDS MANAGEMENT POLICY APPROVED BY GOVERNING BODY ON 2 APRIL 2009 INTRODUCTION What are Records? Records are documents created, used and maintained for business reasons.
More informationDisaster Recovery Plan Documentation for Agencies Instructions
California Office of Information Security Disaster Recovery Plan Documentation for Agencies Instructions () November 2009 SCOPE AND PURPOSE The requirements included in this document are applicable to
More informationWest Midlands Police and Crime Commissioner Records Management Policy 1 Contents
West Midlands Police and Crime Commissioner Records Management Policy 1 Contents 1 CONTENTS...2 2 INTRODUCTION...3 2.1 SCOPE...3 2.2 OVERVIEW & PURPOSE...3 2.3 ROLES AND RESPONSIBILITIES...5 COMMISSIONED
More informationThe University of Iowa. Enterprise Information Technology Disaster Plan. Version 3.1
Version 3.1 November 22, 2004 TABLE OF CONTENTS PART 1: DISASTER RECOVERY EXPECTATIONS... 3 OVERVIEW...3 EXPECTATIONS PRIOR TO AN INCIDENT OCCURRENCE...3 EXPECTATIONS PRIOR TO A DISASTER OCCURRENCE...4
More informationData Security Policy
Policy Number: Revision Number: 0 QP1.44 Date of issue: March 2009 Status: Approved Date of approval: April 2009 Responsibility for policy: Responsibility for implementation: Responsibility for review:
More informationMARQUIS DISASTER RECOVERY PLAN (DRP)
MARQUIS DISASTER RECOVERY PLAN (DRP) Disaster Recovery is an ongoing process to plan, develop, test and implement changes, processes and procedures supporting the recovery of the critical functions in
More informationTechnology Recovery Plan Instructions
State of California California Information Security Office Technology Recovery Plan Instructions SIMM 5325-A (Formerly SIMM 65A) September 2013 REVISION HISTORY REVISION DATE OF RELEASE OWNER SUMMARY OF
More informationState Records Office Guideline. Management of Digital Records
State Records Office Guideline Management of Digital Records An Information Management Guideline for State Organizations Version 2 January 2015 www.sro.wa.gov.au Contents GLOSSARY... 2 PURPOSE... 5 BACKGROUND...
More informationUniversity of Liverpool
University of Liverpool Information Security Policy Reference Number Title CSD-003 Information Security Policy Version Number 3.0 Document Status Document Classification Active Open Effective Date 01 October
More informationRecords Management - Council Policy Version 2-28 April 2014. Council Policy. Records Management. Table of Contents. Table of Contents... 1 Policy...
Council Policy Records Management Table of Contents Table of Contents... 1 Policy... 2 Policy Objectives... 2 Policy Statement... 2 Records Management Program... 2 Accountability Requirements... 3 General
More informationLife Cycle of Records
Discard Create Inactive Life Cycle of Records Current Retain Use Semi-current Records Management Policy April 2014 Document title Records Management Policy April 2014 Document author and department Responsible
More informationBusiness System Recordkeeping Assessment - Digital Recordkeeping Compliance
Introduction The following assessment will assist to identify whether the system complies with State Records Authority of NSW Standards on Records Management The broad Principles of this standard are as
More informationRecords Management Policy
Records Management Policy Responsible Officer Chief Operating Officer Approved by Vice-Chancellor Approved and commenced April, 2014 Review by April, 2017 Relevant Legislation, Ordinance, Rule and/or Governance
More informationRecords Disposal Schedule Anti-Discrimination Services Northern Territory Anti-Discrimination Commission
Records disposal schedule Records Disposal Schedule Anti-Discrimination Services Northern Territory Anti-Discrimination Commission Disposal Schedule No. 2015/12 August 2015 NT Archives Service For information
More informationIssue 1.0. UoG/ILS/IS 001. Information Security and Assurance Policy. Information Security and Compliance Manager
Document Reference Number Date Title Author Owning Department Version Approval Date Review Date Approving Body UoG/ILS/IS 001 January 2016 Information Security and Assurance Policy Information Security
More informationScotland s Commissioner for Children and Young People Records Management Policy
Scotland s Commissioner for Children and Young People Records Management Policy 1 RECORDS MANAGEMENT POLICY OVERVIEW 2 Policy Statement 2 Scope 2 Relevant Legislation and Regulations 2 Policy Objectives
More informationWEST LOTHIAN COUNCIL RECORDS MANAGEMENT POLICY. Data Label: Public
WEST LOTHIAN COUNCIL RECORDS MANAGEMENT POLICY RECORDS MANAGEMENT POLICY CONTENTS 1. POLICY STATEMENT... 3 2. PRINCIPLES... 3 DEFINITIONS... 4 3. OBJECTIVES... 4 4. SCOPE... 4 5. OWNERSHIP & RESPONSIBILITIES...
More informationINFORMATION GOVERNANCE POLICY: DATA BACKUP, RESTORE & FILE STORAGE HANDLING
INFORMATION GOVERNANCE POLICY: DATA BACKUP, RESTORE & FILE STORAGE HANDLING Original Approved by: Policy and Procedure Ratification Sub-group on 23 October 2007 Version 2.2 Approved by : Information Governance
More informationInformation Management Advice 18 - Managing records in business systems: Overview
Information Management Advice 18 - Managing records in business systems: Overview Introduction The purpose of this Advice is to assist agencies to identify and manage State records in business systems,
More informationCode Subsidiary Document No. 0007: Business Continuity Management. September 2015
Code Subsidiary Document No. 0007: September 2015 Change History Version Number Date of Issue Reason For Change Change Control Reference Sections Affected 20150511 11 May 2015 For industry consultation
More informationInformation Security Policy
Information Security Policy Author: Responsible Lead Executive Director: Endorsing Body: Governance or Assurance Committee Alan Ashforth Alan Lawrie ehealth Strategy Group Implementation Date: September
More information85-01-55 Overview of Business Continuity Planning Sally Meglathery Payoff
85-01-55 Overview of Business Continuity Planning Sally Meglathery Payoff Because a business continuity plan affects all functional units within the organization, each functional unit must participate
More informationRecords Management Policy
Records Management Policy Document Number SOP2006-073 File No. 07/7 Date issued 1 September 2006 Author Branch Records and Mail Services Unit Branch contact 9320.7722 Division Finance & Data Services Summary
More informationUMHLABUYALINGANA MUNICIPALITY
UMHLABUYALINGANA MUNICIPALITY BACKUP AND RESTORE POLICY Backup and Restore Policy Approval and Version Control Approval Process: Position or Meeting Number: Date: Originator Recommended by Director of
More informationDISASTER RECOVERY AND CONTINGENCY PLANNING CHECKLIST FOR ICT SYSTEMS
Appendix L DISASTER RECOVERY AND CONTINGENCY PLANNING CHECKLIST FOR ICT SYSTEMS I. GETTING READY A. Obtain written commitment from top management of support for contingency planning objectives. B. Assemble
More informationSECTION 15 INFORMATION TECHNOLOGY
SECTION 15 INFORMATION TECHNOLOGY 15.1 Purpose 15.2 Authorization 15.3 Internal Controls 15.4 Computer Resources 15.5 Network/Systems Access 15.6 Disaster Recovery Plan (DRP) 15.1 PURPOSE The Navajo County
More informationINFORMATION UPDATE: Removable media - Storage and Retention of Data - Research Studies
INFORMATION UPDATE: Removable media - Storage and Retention of Data - Research Studies REMOVABLE MEDIA: NSW MoH are currently undergoing review with a state-wide working party developing the Draft NSW
More informationThis policy is not designed to use systems backup for the following purposes:
Number: AC IT POL 003 Subject: Backup and Restore Policy 1. PURPOSE The backup and restore policy establishes the need and rules for performing periodic system backup to permit timely restoration of Africa
More informationRECORDKEEPING MATURITY MODEL
Introduction Maturity Rating Definitions 1 Level 1 Inadequate/Sub-standard Practice is not formalised or documented. Processes and practices are fragmented or non-existent. Where processes and practices
More informationWA Food Regulation: Temporary and Mobile Food Businesses
WA Food Regulation: Temporary and Mobile Food Businesses This document contains information on the application of the Food Act 2008 (the Act) in relation to temporary and mobile food businesses. It is
More informationDisaster Recovery Policy
Disaster Recovery Policy INTRODUCTION This policy provides a framework for the ongoing process of planning, developing and implementing disaster recovery management for IT Services at UCD. A disaster is
More informationI.T. Disaster Recovery Plan
I.T. Disaster Recovery Plan Ref 000xxxxQ January, 2015 5, 443 Albany Hwy Victoria Park, WA, 6100 p. 1300 664 136 Info@focusnetworks.com.au www.focusnetworks.com.au I.T. Disaster Recovery Plan - January
More informationBACKUP STRATEGY AND DISASTER RECOVERY POLICY STATEMENT
TADCASTER GRAMMAR SCHOOL Toulston, Tadcaster, North Yorkshire. LS24 9NB BACKUP STRATEGY AND DISASTER RECOVERY POLICY STATEMENT Written by Steve South November 2003 Discussed with ICT Strategy Group January
More informationData Center Assistance Group, Inc. DCAG Contact: Tom Bronack Phone: (718) 591-5553 Email: bronackt@dcag.com Fax: (718) 380-7322
Business Continuity and Disaster Recovery Job Descriptions Table of Contents Business Continuity Services Organization Chart... 2 Director Business Continuity Services Group... 3 Manager of Business Recovery
More informationIT Service Continuity Management PinkVERIFY
-11-G-001 General Criteria Does the tool use ITIL 2011 Edition process terms and align to ITIL 2011 Edition workflows and process integrations? -11-G-002 Does the tool have security controls in place to
More informationGatekeeper PKI Framework. February 2009. Registration Authority Operations Manual Review Criteria
Gatekeeper PKI Framework ISBN 1 921182 24 5 Department of Finance and Deregulation Australian Government Information Management Office Commonwealth of Australia 2009 This work is copyright. Apart from
More informationArchiving and Backup - The Basics
Introduction Backup and archiving are useful tools for managing data, especially volumes of ageing data. Agency policies for retention and access necessitate that these tools should be used to implement
More informationGreater London Authority Records Management Policy
Greater London Authority Records Management Policy 1. Purpose The purpose of the Records Management Policy is to establish a framework for the creation, maintenance, storage, use and disposal of GLA records,
More informationUNIVERSITY OF MANITOBA PROCEDURE
UNIVERSITY OF MANITOBA PROCEDURE Procedure: Parent Policy: Effective Date: June 23, 2015 Revised Date: Review Date: June 23, 2025 Approving Body: Authority: Responsible Executive Officer: Delegate: Contact:
More informationCloud Storage Policy (Draft for consultation)
(Draft for consultation) Please note that this draft is under consultation with stakeholders in colleges and university services, before refinement and approval by the appropriate University Committee.
More informationGeneral Disposal Authority. For encrypted records created in online security processes
General Disposal Authority For encrypted records created in online security processes May 2004 Commonwealth of Australia 2004 ISBN 1 920807 04 7 This work is copyright. Apart from any use as permitted
More informationBusiness continuity management policy
Business continuity management policy health.wa.gov.au Effective: XXX Title: Business continuity management policy 1. Purpose All public sector bodies are required to establish, maintain and review business
More informationTerritory Records (Records Disposal Schedule Disaster Recovery (Human Services) Records) Approval 2005 (No 1)
Australian Capital Territory Territory Records (Records Disposal Schedule Disaster Recovery (Human Services) Records) Approval 2005 (No 1) Notifiable instrument NI2005 157 made under the Territory Records
More informationTitle: DISASTER RECOVERY/ MAJOR OUTAGE COMMUNICATION PLAN
POLICY: This policy is intended to address organizational wide communication executed during a or major IS service outage. When a disaster occurs or when any critical system/infrastructure component is
More informationADRI. Statement on the Application of Digital Rights Management Technology to Public Records. ADRI-2008-001-v1.0
ADRI Statement on the Application of Digital Rights Management Technology to Public Records ADRI-2008-001-v1.0 Version 1.0 6 August 2008 Statement on the Application of Digital Rights Management Technology
More informationAttachment to Data Center Services Multisourcing Service Integrator Master Services Agreement
Attachment to Data Center Services Multisourcing Service Integrator Master Services Agreement DIR Contract No. DIR-DCS-MSI-MSA-001 Between The State of Texas, acting by and through the Texas Department
More informationDELAWARE PUBLIC ARCHIVES POLICY STATEMENT AND GUIDELINES MODEL GUIDELINES FOR ELECTRONIC RECORDS
DELAWARE PUBLIC ARCHIVES POLICY STATEMENT AND GUIDELINES MODEL GUIDELINES FOR ELECTRONIC RECORDS STATEMENT OF PURPOSE The Delaware Public Archives (DPA) has issued "Model Guidelines for Electronic Records"
More informationNHS Business Services Authority Records Management Audit Framework
NHS Business Services Authority Records Management Audit Framework NHS Business Services Authority Corporate Secretariat NHSBSARM019 Issue Sheet Document Reference Document Location Title Author Issued
More informationRecords Management & Data Quality in the Contact Centre. Internal Audit Report 2013/14
Records Management & Data Quality in the Report 2013/14 Records Management & Data Quality in the Ann Kirk & Julie Ball 19 May 2014 Contents Audit: Auditor: Records Management & Data Quality in the Ann
More informationInformation Management Advice 18 - Managing records in business systems Part 1: Checklist for decommissioning business systems
Information Management Advice 18 - Managing records in business systems Part 1: Checklist for decommissioning business systems Introduction Agencies have systems which hold business information, such as
More information5.3. Train@ CQUniversity records and information will be captured and managed within one of the following corporate systems:
POLICY AND PROCEDURE RECORDS MANAGEMENT 1 PURPOSE This policy and procedure provide a framework for the creation, management, retention and disposal of Train@ CQUniversity records in accordance with the
More informationDisposal Authorisation for Information and Technology Management Records. Administrative Schedule No. 4
Disposal Authorisation for Information and Technology Management Records Administrative Schedule No. 4 July 2014 AUTHORISATION FOR THE COMMENCEMENT OF THIS SCHEDULE Issued under the National Archive and
More informationRecordkeeping for Good Governance Toolkit. GUIDELINE 14: Digital Recordkeeping Choosing the Best Strategy
Recordkeeping for Good Governance Toolkit GUIDELINE 14: Digital Recordkeeping Choosing the Best Strategy i The original version of this guideline was prepared by the Pacific Regional Branch of the International
More informationQueensland recordkeeping metadata standard and guideline
Queensland recordkeeping metadata standard and guideline June 2012 Version 1.1 Queensland State Archives Department of Science, Information Technology, Innovation and the Arts Document details Security
More informationPARLIAMENTARY AND HEALTH SERVICE OMBUDSMAN. Records Management Policy. Version 4.0. Page 1 of 11 Policy PHSO Records Management Policy v4.
PARLIAMENTARY AND HEALTH SERVICE OMBUDSMAN Records Management Policy Version 4.0 Page 1 of 11 Document Control Title: Original Author(s): Owner: Reviewed by: Quality Assured by: File Location: Approval
More informationBOARD OF DIRECTORS PAPER COVER SHEET. Meeting date: 22 February 2006. Title: Information Security Policy
BOARD OF DIRECTORS PAPER COVER SHEET Meeting date: 22 February 2006 Agenda item:7 Title: Purpose: The Trust Board to approve the updated Summary: The Trust is required to have and update each year a policy
More informationUniversity of Sunderland Business Assurance Information Security Policy
University of Sunderland Business Assurance Information Security Policy Document Classification: Public Policy Reference Central Register Policy Reference Faculty / Service IG 003 Policy Owner Assistant
More informationCorporate Records Management Policy
Corporate Records Management Policy Introduction Part 1 Records Management Policy Statement. February 2011 Part 2 Records Management Strategy. February 2011 Norfolk County Council Information Management
More informationTERRITORY RECORDS OFFICE BUSINESS SYSTEMS AND DIGITAL RECORDKEEPING FUNCTIONALITY ASSESSMENT TOOL
TERRITORY RECORDS OFFICE BUSINESS SYSTEMS AND DIGITAL RECORDKEEPING FUNCTIONALITY ASSESSMENT TOOL INTRODUCTION WHAT IS A RECORD? AS ISO 15489-2002 Records Management defines a record as information created,
More informationRecords Management Policy
Once printed off, this is an uncontrolled document. Please check the Intranet for the most up to date copy Author Freedom of Information Lead Version 5.0 Issue Issue Date October 2011 Review Date October
More informationUsing Keyword AAA: A thesaurus of common administrative terms
Using Keyword AAA: A thesaurus of common administrative terms A Guideline for Queensland State Government Agencies, Statutory Authorities and Government Owned Corporations Guideline For Using Keyword AAA
More informationComputer System Validation for Clinical Trials:
Computer System Validation for Clinical Trials: Framework Standard Operating Procedure (F-SOP) Author: Tim Cross Version History: 0.1di DRAFT 24-April-2013 0.2 DRAFT 12-June-2013 Current Version: 1.0 17-June-2013
More informationi. Maintenance of the operating system, applications, content on the server, or fault tolerant network connections
Physical Co-location Service Level Agreement 1. Agreement This agreement is to define Physical Server Co-location services provided to a Customer. Typically, service definitions include hours, availability,
More informationHong Kong Baptist University
Hong Kong Baptist University Disaster Recovery Standard FOR INTERNAL USE ONLY Date of Issue: JULY 2012 Revision History Version Author Date Revision 1.0 Information Security Subcommittee (ISSC) July 2012
More informationTransition Guidelines: Managing legacy data and information. November 2013 v.1.0
Transition Guidelines: Managing legacy data and information November 2013 v.1.0 Document Control Document history Date Version No. Description Author October 2013 November 2013 0.1 Draft Department of
More informationOhio Supercomputer Center
Ohio Supercomputer Center IT Business Continuity Planning No: Effective: OSC-13 06/02/2009 Issued By: Kevin Wohlever Director of Supercomputer Operations Published By: Ohio Supercomputer Center Original
More informationHarbinger Escrow Services Backup and Archiving Policy. Document version: 2.8. Harbinger Group Pty Limited Delivered on: 18 March 2008
Document version: 2.8 Issued to: Harbinger Escrow Services Issued by: Harbinger Group Pty Limited Delivered on: 18 March 2008 Harbinger Group Pty Limited, Commercial in Confidence Table of Contents 1 Introduction...
More informationLIMCO AIREPAIR, INC. Disaster Plan
LIMCO AIREPAIR, INC. Disaster Plan 1 INDEX EMERGENCY CONTACTS!! 5 REVISION CONTROL PAGE..!! 6 PURPOSE! SCOPE..!! 7! PLAN OBJECTIVES...!! 7! ASSUMPTIONS..!! 7! DISASTER DEFINITION..!! 7! RECOVERY TEAMS.!!
More informationOperational Risk Publication Date: May 2015. 1. Operational Risk... 3
OPERATIONAL RISK Contents 1. Operational Risk... 3 1.1 Legislation... 3 1.2 Guidance... 3 1.3 Risk management process... 4 1.4 Risk register... 7 1.5 EBA Guidelines on the Security of Internet Payments...
More informationManagement of Official Records in a Business System
GPO Box 2343 ADELAIDE SA 5001 Tel (08) 8204 8773 Fax (08) 8204 8777 DX:467 srsarecordsmanagement@sa.gov.au www.archives.sa.gov.au Management of Official Records in a Business System October 2011 Version
More informationBirkenhead Sixth Form College IT Disaster Recovery Plan
Author: Role: Mal Blackburne College Learning Manager Page 1 of 14 Introduction...3 Objectives/Constraints...3 Assumptions...4 Incidents Requiring Action...4 Physical Safeguards...5 Types of Computer Service
More informationInformation Security Policy September 2009 Newman University IT Services. Information Security Policy
Contents 1. Statement 1.1 Introduction 1.2 Objectives 1.3 Scope and Policy Structure 1.4 Risk Assessment and Management 1.5 Responsibilities for Information Security 2. Compliance 3. HR Security 3.1 Terms
More informationOFFICIAL. NCC Records Management and Disposal Policy
NCC Records Management and Disposal Policy Issue No: V1.0 Reference: NCC/IG4 Date of Origin: 12/11/2013 Date of this Issue: 14/01/2014 1 P a g e DOCUMENT TITLE NCC Records Management and Disposal Policy
More informationRecords and Information Management. General Manager Corporate Services
Title: Records and Information Management Policy No: 057 Adopted By: Chief Officers Group Next Review Date: 08/06/2014 Responsibility: General Manager Corporate Services Document Number: 2120044 Version
More informationITSM Tools Operation Continuity Plan Example
ITSM Tools Operation Continuity Plan Example 1 Table of Contents 2 Introduction... 2 3 Invocation... 2 4 Scope... 2 5 Data Dependencies and Considerations... 3 6 Security and Access Considerations... 3
More informationDean Bank Primary and Nursery School. Secure Storage of Data and Cloud Storage
Dean Bank Primary and Nursery School Secure Storage of Data and Cloud Storage January 2015 All school e-mail is disclosable under Freedom of Information and Data Protection legislation. Be aware that anything
More informationSTATE RECORDS COMMISSION. SRC Standard 6 OUTSOURCING. A Recordkeeping Standard for State Organizations
STATE RECORDS COMMISSION SRC Standard 6 OUTSOURCING A Recordkeeping Standard for State Organizations State Records Commission of WA Perth, Western Australia February 2002 Table of Contents Definitions
More informationRecords Management Policy & Guidance
Records Management Policy & Guidance COMMERCIALISM Document Control Document Details Author Nigel Spencer Company Name The Crown Estate Department Name Information Services Document Name Records Management
More informationHead of Information & Communications Technology Responsible work team: ICT Security. Key point summary... 2
Policy Procedure Information security policy Policy number: 442 Old instruction number: MAN:F005:a1 Issue date: 24 August 2006 Reviewed as current: 11 July 2014 Owner: Head of Information & Communications
More informationhi Information Technologies Change Management Standard
hi Information Technologies Change Management Standard Classification Service Delivery Standard # SVD-002 Approval Authority Chief Information Officer Implementation Authority Director, Service Delivery
More informationWhy Should Companies Take a Closer Look at Business Continuity Planning?
whitepaper Why Should Companies Take a Closer Look at Business Continuity Planning? How Datalink s business continuity and disaster recovery solutions can help organizations lessen the impact of disasters
More informationDISASTER RECOVERY. Omniture Disaster Plan. June 2, 2008 Version 2.0
DISASTER RECOVERY Omniture Disaster Plan June 2, 2008 Version 2.0 CHAPTER 1 1 Disaster Recovery Plan Overview In the event that one of our data collection environments are unavailable due to an event,
More informationDraft Copy. Change Management. Release Date: March 18, 2012. Prepared by: Thomas Bronack
Draft Copy Change Management Release Date: March 18, 2012 Prepared by: Thomas Bronack Section Table of Contents 10. CHANGE MANAGEMENT... 5 10.1. INTRODUCTION TO CHANGE MANAGEMENT... 5 10.1.1. PURPOSE OF
More informationCORPORATE RECORDS MANAGEMENT POLICY
1.1 Introduction Derbyshire County Council is dependent on its records to operate efficiently and to account for its actions. This policy defines a structure for Derbyshire County Council to ensure that
More information15 Organisation/ICT/02/01/15 Back- up
15 Organisation/ICT/02/01/15 Back- up 15.1 Description Backup is a copy of a program or file that is stored separately from the original. These duplicated copies of data on different storage media or additional
More informationIBX Business Network Platform Information Security Controls. 2015-02- 20 Document Classification [Public]
IBX Business Network Platform Information Security Controls 2015-02- 20 Document Classification [Public] Table of Contents 1. General 2 2. Physical Security 2 3. Network Access Control 2 4. Operating System
More informationHSE P0801 HSE Document Control and Records Management Procedure
HSE P0801 HSE Document Control and Records 1. DOCUMENT CONTROL... 2 2. PURPOSE... 4 3. SCOPE... 4 4. DEFINITIONS... 4 5. ROLES AND RESPONSIBILITIES... 5 6. PROCESS DETAILS... 7 6.1 Document Control...
More informationCISM Certified Information Security Manager
CISM Certified Information Security Manager Firebrand Custom Designed Courseware Chapter 4 Information Security Incident Management Exam Relevance Ensure that the CISM candidate Establish an effective
More informationDisaster Recovery. Stanley Lopez Premier Field Engineer Premier Field Engineering Southeast Asia Customer Services and Support
Disaster Recovery Stanley Lopez Premier Field Engineer Premier Field Engineering Southeast Asia Customer Services and Support Categories of Risk Financial Operational Reputational Market share Revenue
More informationCisco Disaster Recovery: Best Practices White Paper
Table of Contents Disaster Recovery: Best Practices White Paper...1 Introduction...1 Performance Indicators for Disaster Recovery...1 High Level Process Flow for Disaster Recovery...2 Management Awareness...2
More informationLord Chancellor s Code of Practice on the management of records issued under section 46 of the Freedom of Information Act 2000
Lord Chancellor s Code of Practice on the management of records issued under section 46 of the Freedom of Information Act 2000 Lord Chancellor s Code of Practice on the management of records issued under
More informationCloud Computing and Records Management
GPO Box 2343 Adelaide SA 5001 Tel (+61 8) 8204 8773 Fax (+61 8) 8204 8777 DX:336 srsarecordsmanagement@sa.gov.au www.archives.sa.gov.au Cloud Computing and Records Management June 2015 Version 1 Version
More informationITEM NO: 4. Date: 23 March 2010. Pam Williams Borough Treasurer Wendy Poole Head of Risk Management Audit Services. Reporting Officers:
ITEM NO: 4 Report To: AUDIT PANEL Date: 23 March 2010 Reporting Officers: Subject: Report Summary: Recommendations: Links to Community Strategy: Policy Implications: Financial Implications: (Authorised
More informationHosted Exchange. Security Overview. Learn More: Call us at 877.634.2728. www.megapath.com
Security Overview Learn More: Call us at 877.634.2728. www.megapath.com Secure and Reliable Hosted Exchange Our Hosted Exchange service is delivered across an advanced network infrastructure, built on
More informationInformation Governance Framework. June 2015
Information Governance Framework June 2015 Information Security Framework Janice McNay June 2015 1 Company Thirteen Group Lead Manager Janice McNay Date of Final Draft and Version Number June 2015 Review
More informationLaboratory Information Management Systems. Presented By: Happy Mashigo & Vuyiswa Kenke
Laboratory Information Management Systems Presented By: Happy Mashigo & Vuyiswa Kenke Welcome Welcome to the Laboratory Information Management Systems Module 2 Module Objectives At the end of this module,
More information