Strategic IT Accountability Board (SITAB) Quarterly Meeting Update
On Wednesday, September 8, 2010, the Strategic IT Accountability Board (SITAB) held its quarterly meeting. The agenda included:
- reporting on the significant progress made since August 2009 in implementing the recommendations of the Strategic IT Advisory Committee (SITAC)
- reviewing IT priorities for this fiscal year
- going over the proposed Information Technology Services (ITS) FY 2010-2011 capital budget
- considering new policy statements regarding laptop encryption and high-value IT purchases.
Much of the discussion focused on the proposed laptop encryption policy, which had been vetted by both the Operational IT Committee (OIT) and the IT Architecture & Infrastructure Committee (AIC). The need for such a policy is recognized. A large number of University-owned laptops are lost, stolen or go missing each year and SITAB agreed that laptops with sensitive data must be encrypted. SITAB commended the work of AIC in selecting a better, multi-platform tool (WinMagic) for campus-wide use. WinMagic has been purchased by ITS with the endorsement of OIT. Cam Beasley, Chief Information Security Officer (CISO), is scheduled to present the implementation approach to the University Compliance Committee.
SITAB endorsed a new step in the University IT procurement process. Central Purchasing will now notify the Chief Information Officer and the CISO of pending high-risk and high value (>$100K) IT procurements. The goal is to avoid purchasing IT products with security holes, and reduce costs by fostering IT purchasing synergies.
President Powers concluded the meeting by saying the progress made during the past year in improving IT stewardship at the University has been "phenomenal." Congratulations and thanks to IT governance committee members and IT staff across campus who have contributed so much to make this happen!