Infrastructure and Architecture Policy: Difference between revisions

From Appalachian State University Policy Manual
(Created page with "Policy 904 == Introduction == The purpose of this policy is to inform the Appalachian State University (“Appalachian”) community of the responsibilities and requirements...")
 
 
(3 intermediate revisions by one other user not shown)
Line 28: Line 28:


=== Management of IT Purchases ===
=== Management of IT Purchases ===
All new campus Infrastructure acquisitions must adhere to the University IT Acquisitions Standard to ensure:
All new campus Infrastructure acquisitions must adhere to the University IT Acquisitions Standard [https://its.appstate.edu/it-governance/it-policy-standards-guidelines] to ensure:
<ol>
<ol>
<li style="list-style-type:lower-alpha">IT purchases operate effectively in the University computing environment;</li>
<li style="list-style-type:lower-alpha">IT purchases operate effectively in the University computing environment;</li>
Line 40: Line 40:


== Additional References ==
== Additional References ==
:[[Acceptable_Use_of_Computing_and_Electronic_Resources_Policy|Acceptable Use Policy]]
:[[Acceptable_Use_of_Computing_and_Electronic_Resources_Policy|Appalachian Policy 906 - Acceptable Use Policy]]
:[[Information_Technology_Governance_Policy|Information Technology Governance Policy]]
:[[Information_Technology_Governance_Policy|Appalachian Policy 901 - Information Technology Governance Policy]]
:[https://its.appstate.edu/sites/default/files/_it_acquisition_standard.pdf IT Acquisitions Standard]
:[https://its.appstate.edu/sites/default/files/_it_acquisition_standard.pdf IT Acquisitions Standard]
:[[Information_Security_Policy|Information Security Policy]]
:[[Information_Security_Policy|Appalachian Policy 903 - Information Security Policy]]
:[https://security.appstate.edu/sites/security.appstate.edu/files/riskmanagementstandard.pdf Information Security Risk Management Standard]
:[https://security.appstate.edu/sites/security.appstate.edu/files/riskmanagementstandard.pdf Information Security Risk Management Standard]
:[https://its.appstate.edu/it-governance/it-policy-standards-guidelines IT Policy, Standards and Guidelines Website]
:[https://its.appstate.edu/it-governance/it-policy-standards-guidelines IT Policy, Standards and Guidelines Website]
Line 54: Line 54:


== Original Effective Date ==
== Original Effective Date ==
December 11, 2020
December 7, 2020


== Revision Dates ==
== Revision Dates ==
[[Category:Contents]]
[[Category:Information Technology]]

Latest revision as of 14:34, 14 December 2020

Policy 904

Introduction

The purpose of this policy is to inform the Appalachian State University (“Appalachian”) community of the responsibilities and requirements for the acquisition, design, and implementation of Appalachian’s Information Technology (“IT”) infrastructure and architecture, including all cloud IT services.

Scope

This policy applies to all faculty, staff, students, and vendors who seek to acquire, design, build, implement or maintain IT Infrastructure solutions, as well as devices and software that connect to and use IT Infrastructure.

Definitions

Information Technology (IT)

Same meaning as defined in Appalachian Policy 901 – IT Governance Policy.

IT Infrastructure

The system of enterprise hardware, software, networks, facilities, and service components used to develop, test, operate, monitor, manage, and support Information Technology services.

IT Architecture

A set of principles, guidelines or rules used by the University to direct the process of acquiring, building, modifying and interfacing IT resources throughout the enterprise.

IT Standards

Same meaning as defined in Appalachian Policy 901 – IT Governance Policy.


Policy and Procedure Statements

Policy Implementation and Compliance

The Chancellor vests the Chief Information Officer with the authority necessary to oversee and manage all aspects of the campus IT Infrastructure and IT Architecture. Appalachian’s Chief Information Officer is responsible for establishing specific IT Standards to govern IT Infrastructure and IT Architecture in accordance with Appalachian Policy 901 – IT Governance Policy.

Management of IT Purchases

All new campus Infrastructure acquisitions must adhere to the University IT Acquisitions Standard [1] to ensure:

  1. IT purchases operate effectively in the University computing environment;
  2. meet security standards;
  3. address compliance obligations; and
  4. support the University mission.

Exceptions

Exceptions to this policy must be approved by the Chief Information Officer with advisement from the IT Governance Board of Directors, as defined in Appalachian Policy 901 – IT Governance Policy.

Additional References

Appalachian Policy 906 - Acceptable Use Policy
Appalachian Policy 901 - Information Technology Governance Policy
IT Acquisitions Standard
Appalachian Policy 903 - Information Security Policy
Information Security Risk Management Standard
IT Policy, Standards and Guidelines Website

Authority

UNC Policy Manual 1400.1 - Information Technology Governance

Contact Information

Office of the Chief Information Officer (828-262-6278)

Original Effective Date

December 7, 2020

Revision Dates