Utah Transit Authority header
File #: 21-065   
Type: UTA Policy Status: Passed
In control: Board of Trustees
On agenda: 6/23/2021 Final action: 6/23/2021
Title: UTA Policy - UTA.01.03 Information Technology
Attachments: 1. UTA.01.03 Information Technology UTA Policy

TO:                                                                Board of Trustees

THROUGH:                                          Carolyn Gonot, Executive Director

FROM:                                                               Alisha Garrett, Chief Enterprise Strategy Officer

PRESENTER(S):                     Alisha Garrett, Chief Enterprise Strategy Officer

                                                                                    

TITLE:

title

UTA Policy - UTA.01.03 Information Technology

end

 

AGENDA ITEM TYPE:

UTA Policy

RECOMMENDATION:

Approve the UTA.01.03 Information Technology policy and authorize the Executive Director to sign and implement the policy.

BACKGROUND:

UTA has technology policies and SOPs at multiple levels of the organization from Agency policies to multiple Technology Department policies and SOPs. Many of the technology policies were a blend of policies/SOP documents. Based on best practice and direction from Executive leadership we are re-evaluating our current policies and processes to align with the new definitions of Policy’s and Agency SOP’s that also follow the new naming convention, new structure, and standardized template.   As part of UTA’s policy redesign initiative, Technology proposes the adoption of this umbrella Technology policy that defines who is responsible for proper usage and consumption of UTA’s technology resources. Multiple Agency SOPs will follow this policy that define how UTA’s various technology assets will be secured and protected.

DISCUSSION:

Technology is used throughout the Agency and by all team members from the Utah Transit Authority (UTA) Board to contracted UTA employees. This policy defines that all UTA employees and contractors have a responsibility to properly use technology and minimize potential risk to UTA resulting from unauthorized use of Technology Resources and to preserve and protect the confidentiality, integrity, and availability of the UTA’s networks, systems, applications, and data.  After reviewing our current state of policies and SOP’s we are taking the direction to ensure we have broad high-level policies which our SOP’s will align. The new approach will have multiple “How To” Agency Technology SOPs under a handful of umbrella policies that will define “Who Is Responsible and What we are trying to accomplish”.  This is the first umbrella policy for Information Technology and will have future Technology SOPs under the following categories:  • Acceptable use of technology.   • Technology access control.  • Technology asset management.  • Technology physical security.  • Technology operational security.  • Cloud services.   • Technology systems acquisition,  • Development and maintenance.  • Technology governance and compliance.

ATTACHMENTS:

1. UTA.01.03 Information Technology Policy