The policy of Regis University technology resource seems to be more direct and recently been implemented where as the University of Cincinnati IT policy is outdate. There is a need to adopt and change to the new trends and technologies in the domain of IT infrastructure.
The University of Cincinnati does mention that a user of its IT resources is required to use the policy while abiding by the rules of the federal government but it would be very appropriate to mention some specific details of these policies in terms of the University.
Questions
Are all of the key issues covered by this policy If no, which ones need to be addressed
Almost all the issues are covered in this policy of University of Cincinnati, There is one issue that might have been addressed is of using of internet and other networked resources by unauthorized user who might be well in the campus and might gain access to it. In such a case there is an utmost need to detect such an intruder and bring into the knowledge of law enforcement agencies.
The other issue that is explicitly not mentioned is the use of internet and downloading of unauthorized software and music and video through peer to peer sharing . This might become a very serious issue in the dorms of the university.
Compared to the Regis University technology resources policy this policy is more comprehensive. The topics very well covered in here are Resource limitation, Privacy, access and security, Plagiarism and Copyright and the enforcement of all the IT policies.
The use of unauthorized or pirated software issue has not been discussed in detail except from the mentioning that the federal laws needs to be followed, in the authors opinion it would be a good idea to repeat such a thing specially for the students who may not know the federal rules.
Is the statement of enforcement clear and strong If not, how would you reword this section of the policy
The statement of enforcement is clear and strong but there is a need of mentioning that who is actually responsible of executing the enforcement, is there any special team to do that such as IT audit or security team. This is necessary because in case of any violation the violator may have an advantage as there seems to be several people who might be responsible for an action , including department head ,system administrators and disciplinary committee. Hence either the founding of a IT regulation body is required or someone is especially given the charge to look after the enforcement of IT policy.
It is also important to mention that if someone is found to interfere with the security brech of the university how would he be treated. The procedure needs to be defined.
How would you ensure that this policy is communicated and understood by the broad group of IT users at the university-students, professors, research people, administrative support staff, contractors, and part-time workers
This can be properly communicated by emailing this policy to the existing users and making them sure that they accept it by forcing them to click accept button. The new users can be made aware of this policy when they sign up for school as an employee in the capacity of professors, research people, administrative support staff, contractors, and part-time workers or as university students.
They also need to be handed out the policy in print once they are signing up so that they become well aware of the policy. The system administrators may from time to time inform the users about this policy.
While the users try to logging onto unsecure websites or use resources which are limited such as printing at that time the user must be made aware of efficient and proper use of the IT infrastructure policy by either displaying the policy or popping up of the window .
4. Examine the IT usage policy in effect at your school. Write a paragraph identifying its strength and weaknesses.
The IT usage policy at my school is very effective, prompt action is always taken if someone is found misusing the always limited resources. Printers have secured login and punch card options to use it. Anyone who wishes to use the projector or scanner needs to contact the media resource center. If a user need to use such a service at the library it is made sure that the authorized personnel assists the user as well as make sure that the user does not misuse the public resource.
The internet usage is prohibited to the users who are not authorized , any student or faculty member who wants to use the service needs to register their MAC address and get a login and password to access the service. To use the wireless internet a very well established WPA2 system is in place. With such a security encryption it is impossible for any unauthorized user to break into the system.
The university maintains its own email service and is monitored for spam and any other kind of unsolicited emails. People are discouraged to use it for business purposes also.
One weaknesses of this IT infrastructure is the limited use of bandwidth usage in a day by even the authorized users. A researcher who downloads and checks softwares for his purpose is not able to do such a think because of bandwidth limitation.
The security is also very tight and people working in the networks see a very difficult time to implement new algorithms and services for test purpose because the security policy is very tight, the major sufferers are the engineering students majoring in communication and networking.
The University of Cincinnati does mention that a user of its IT resources is required to use the policy while abiding by the rules of the federal government but it would be very appropriate to mention some specific details of these policies in terms of the University.
Questions
Are all of the key issues covered by this policy If no, which ones need to be addressed
Almost all the issues are covered in this policy of University of Cincinnati, There is one issue that might have been addressed is of using of internet and other networked resources by unauthorized user who might be well in the campus and might gain access to it. In such a case there is an utmost need to detect such an intruder and bring into the knowledge of law enforcement agencies.
The other issue that is explicitly not mentioned is the use of internet and downloading of unauthorized software and music and video through peer to peer sharing . This might become a very serious issue in the dorms of the university.
Compared to the Regis University technology resources policy this policy is more comprehensive. The topics very well covered in here are Resource limitation, Privacy, access and security, Plagiarism and Copyright and the enforcement of all the IT policies.
The use of unauthorized or pirated software issue has not been discussed in detail except from the mentioning that the federal laws needs to be followed, in the authors opinion it would be a good idea to repeat such a thing specially for the students who may not know the federal rules.
Is the statement of enforcement clear and strong If not, how would you reword this section of the policy
The statement of enforcement is clear and strong but there is a need of mentioning that who is actually responsible of executing the enforcement, is there any special team to do that such as IT audit or security team. This is necessary because in case of any violation the violator may have an advantage as there seems to be several people who might be responsible for an action , including department head ,system administrators and disciplinary committee. Hence either the founding of a IT regulation body is required or someone is especially given the charge to look after the enforcement of IT policy.
It is also important to mention that if someone is found to interfere with the security brech of the university how would he be treated. The procedure needs to be defined.
How would you ensure that this policy is communicated and understood by the broad group of IT users at the university-students, professors, research people, administrative support staff, contractors, and part-time workers
This can be properly communicated by emailing this policy to the existing users and making them sure that they accept it by forcing them to click accept button. The new users can be made aware of this policy when they sign up for school as an employee in the capacity of professors, research people, administrative support staff, contractors, and part-time workers or as university students.
They also need to be handed out the policy in print once they are signing up so that they become well aware of the policy. The system administrators may from time to time inform the users about this policy.
While the users try to logging onto unsecure websites or use resources which are limited such as printing at that time the user must be made aware of efficient and proper use of the IT infrastructure policy by either displaying the policy or popping up of the window .
4. Examine the IT usage policy in effect at your school. Write a paragraph identifying its strength and weaknesses.
The IT usage policy at my school is very effective, prompt action is always taken if someone is found misusing the always limited resources. Printers have secured login and punch card options to use it. Anyone who wishes to use the projector or scanner needs to contact the media resource center. If a user need to use such a service at the library it is made sure that the authorized personnel assists the user as well as make sure that the user does not misuse the public resource.
The internet usage is prohibited to the users who are not authorized , any student or faculty member who wants to use the service needs to register their MAC address and get a login and password to access the service. To use the wireless internet a very well established WPA2 system is in place. With such a security encryption it is impossible for any unauthorized user to break into the system.
The university maintains its own email service and is monitored for spam and any other kind of unsolicited emails. People are discouraged to use it for business purposes also.
One weaknesses of this IT infrastructure is the limited use of bandwidth usage in a day by even the authorized users. A researcher who downloads and checks softwares for his purpose is not able to do such a think because of bandwidth limitation.
The security is also very tight and people working in the networks see a very difficult time to implement new algorithms and services for test purpose because the security policy is very tight, the major sufferers are the engineering students majoring in communication and networking.
No comments:
Post a Comment