InfraSec 07.10.13 Minutes

Attending:

Phil Reiter, Dean Dang, Cynthia Herrera Lindstrom, Mark Goedert, Mat Willis, Marcin Hiolski, Alex Stern, Johnathan Kupferer, Francis Kayiwa, Craig Jackson, Jack Gallagher, Jay Dean, La Don Reed, Kevin Price, Andre Pavkovic, Lisa Blake, Heather O’Leary, Kevin Shalla, Doug McCarthy, Therese Molina, Jason Maslanka, Bala Ramaraju, Ashok Bennett

  • Subcommittee Updates
    • Risk Management
      • Consideration of two options for a new vendor
      • Goal is to shadow the vendor in order to do risk assessment internally
  • ACCC Updates
    • Office 365
      • Working with Microsoft tech support to resolve issues on the Microsoft side
  • IT Strategic Plan
    • Members of working groups are requested to provide insight on their group’s progress
    • Possibility of a web conference with WTC Consulting to answer questions
      • WTC can meet with InfraSec to make sure the current direction is the right one
      • Possibility of an extra InfraSec meeting to discuss the working groups
  • NetID Naming policy
    • Discussion on the possibility of changing the processes involved in assigning NetIDs as people come to campus
  • Enterprise Development of Apps
    • Discussion of systems coming out of UA and associated risks
    • Communication issues regarding updates are being addressed
  • Health Insurance Portability and Accountability Act (HIPAA) Committee
    • Discussion on possibility of creating a role akin to an ethics officer for the compliance office
    • Committee has been formed, there is discussion of how it will interact with security policies
    • Suggestion of involvement between InfraSec and HIPPA committee
  • Identity Access Management
    • New approaches are being considered for the project