InfraSec 11.11.15 Minutes

 

Attending:

Craig Jackson, Kevin Shalla, Chris Barton, Mike Kirda, Jason Maslanka, Ed Zawacki, Vinay Surpuriya, Ernesto Reyna, Therese Molina, Lisa Blake (on the phone), Andre Pavkovic, Bala Ramaraju, Phil Reiter, Frank Cervone, Sandra Robinson, Sandeep Dath, Kevin Price, Allen Randall, Brian Ng, Mark Goedert, Stacey Valuch, Dean Dang, Ron Fernandez, Alex Phistry, Heather O’Leary

  • Subcommittee Records
    • Digital Accessibility
      • One of the units is currently having contact with the Athletic department and a vendor named Red Shelf in order to improve digital accessibility
  • Old Business
    • HR Resolutions
      • Two resolutions were gone over: implementation of job model and IT director and Academic professional
      • HR requires a formal response
      • Job model soon to be going full force
  • New Business
    • Risk Assessment
      • Presentation on status update and proposals which, if approved, will be given to the Council for approval
      • Discussion on presentation
    • Vulnerability Scanning Proposal
      • Concern voiced that this proposal only addresses two parts vulnerability, clarification requested
      • Discussion on vulnerability scanning and on payment and implementation program
      • Discussion on resources needed and those which could be relocated for this plan
      • Committee votes on proposal, it passes
    • GRC Proposal
      • Description of proposal on observation and feedback
      • Stated that Urbana and UIC will work together on evaluation
      • Discussion on evaluation
      • Explanation of IT and policy portions
      • Question on whether this tool is a GRC tool or an IT GRC tool, agreed that it could be both
      • Discussion on tool itself as well as impact on IT
      • Committee votes on proposal, it passes
    • MDM Proposal
      • Proposal is described along with its importance
      • How the tool will work on local level is questioned and met with it looks promising but needs an evaluation from ACCC
      • Number of mobile devices covered by this tool is questioned
      • Discussion on utilization of tool as well as price for amount of licenses
      • Savings by working with Urbana are noted
      • Committee votes on proposal, it passes
  • Chair’s Reports
    • ITGC Main Council
      • Discussion on WTC meeting which occurred at Council meeting
    • Information Privacy & Security Committee & HIPAA Subcommittee
      • Discusses last meeting
      • Mention of HIPAA liaison position
  • Discussion Topics
    • SCCM
      • Current SCCM shared service is addressed
      • Two outcomes were described: Urbana testing imagine and other functions of SCCM and pulling together a small group of stakeholders to look at future of service
    • IT Tech Position
      • Discussion on need for IT Tech position needing to have a degree in Computer Science or related field
      • A request is made for a small group from this committee to volunteer to represent at meeting with HR for productive discussion
      • Discussion on type of degree, citizenship status, and amount of experience required for position
    • InfraSec Planning
      • Services and Gaps planning worksheet presented
      • A request was made for spreadsheets describing services provided by each unit
    • Bitlocker
      • Discussion
    • VPN for RDP
      • Discussion on whether or not VPN for RDP was needed
      • Discussion on how the system would function after the implementation of VPN
    • NOC Purpose
      • NOC’s purpose was questioned and an explanation is asked to be presented at the next meeting