State Agencies’ Records Retention Schedule S6: Information Systems Records S6 Retention Schedules.

Slides:



Advertisements
Similar presentations
Introduction to Records Management Policy
Advertisements

AS PER FLORIDA STATUTE (1B (10))ALL LOCATIONS MUST ENSURE THAT DESTRUCTION OF RECORDS IS CONDUCTED IN A MANNER THAT SAFEGUARDS THE INTERESTS OF THE.
Identification and Disposition of Official University Records University of Texas at Arlington Records Management.
Records Management for UW-Madison Employees – An Introduction UW-Madison Records Management UW-Archives & Records Management 2012 Photo courtesy of University.
OVERVIEW TEAM5 SOFTWARE The TEAM5 software manages personnel and test data for personal ESD grounding devices. Test and personnel data may be viewed/reported.
GMP Document and Record Retention
Retention and Disposition of Educational Records Eunice G. DiBella, CRM Public Records Administrator Connecticut State Library March 2, 2007.
Impacts of “MAP-21”on the National Bridge Inspection Program Tribal Government Coordination Meeting Date August 7, 2014 Presented by: Gary Moss, P.E. Acting.
Records Management at UW-Whitewater Why records management? Life cycle of records Four values – Administrative – Legal – Fiscal – Historical.
National Association for Court Management Annual Conference July 17, 2014 Scottsdale, Arizona.
EFFECTIVE RECORDS MANAGEMENT PROGRAM Indiana Commission on Public Records Indiana SHRAB Conference April 13, 2010 Government Records Indianapolis, IN.
Database Administration Chapter FOSTER School of Business Acctg. 420.
Concepts of Database Management Seventh Edition
1 © Copyright 2008 EMC Corporation. All rights reserved. EMC Documentum Trusted Content Services.
Records Management Basic Training
RECORDS MANAGEMENT City of Oregon City “ That was then… this is now!”
Network security policy: best practices
Created May 2, Division of Public Health Managing Records What is a Record? What is a Records Retention & Disposition Schedule? Why is this Important?
RECORDS MANAGEMENT MELANIE WELCH 1. What Is the Sunshine Law? The Sunshine law grants every person the Constitutional right to: ◦ View or copy any public.
AIIM Presentation Selecting and Implementing A Records Management System June 5, 2008.
Arizona State Library, Archives and Public Records
Washington State Archives May 2011 Presented by: Russell Wood – State Records Manager State Government General Records Retention Schedule The Next Revision.
Records Survey and Retention Schedule Recertification 2011.
PELICAN Keys to Quality – GSD Session 11 August 26th, 2008.
Records Management Overview. Why? It’s the Law It’s the Law It’s University Policy It’s University Policy Fiscal and Legal Compliance Fiscal and Legal.
Basic Records Management. What we’ll cover Virginia Public Records Act Definitions Understanding and using the LVA General Schedules The schedule cover.
UTA RIMUTA RIM Compliance and Common Sense Compliance: Texas requires all state agencies, city and county governments, school districts, and other government.
GOODWILL OF NORTHWEST NORTH CAROLINA, INC. EMPLOYEE TRAINING DATABASE PROTOTYPE.
Policies and Procedures Deb Bartlett Joy Faerber Office of Procedures, Records, and Forms Revised May 2015.
Concepts of Database Management Sixth Edition
Annual Records Management Workshop
1 Records Inventory & Data Classification Workshop Data Classification Project Note: This is an example of one agency’s approach to meeting the state records.
Managing the Retention of Electronic Records Ann Marie Przybyla Electronic Records Symposium Region 9, November 2007.
1 Oracle Database 11g – Flashback Data Archive. 2 Data History and Retention Data retention and change control requirements are growing Regulatory oversight.
Concepts of Database Management Eighth Edition
How Hospitals Protect Your Health Information. Your Health Information Privacy Rights You can ask to see or get a copy of your medical record and other.
RECORDS MANAGEMENT Office of Compliance. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping. –Protection.
Ecords Management Records Management Paul Smallcombe Records & Information Compliance Manager.
To review information useful in deciding what to do with records that are no longer active. UTA RIMUTA RIM.
Records Management 101 The Basics Archival and Records Management Services Division.
An introduction to records management at Clemson University Records Management Office 139 Anderson Hwy, Suite 100 Clemson, S.C
Ali Pabrai, CISSP, CSCS ecfirst, chairman & ceo Preparing for a HIPAA Security Audit.
Developing Policy and Procedure Management System إعداد برنامج سياسات وإجراءات العمل 8 Safar February 2007 HERA GENERAL HOSPITAL.
RECORD RETENTION Arizona State Library, Archives and Public Records.
Washington State Archives “Going Paperless” Presented by: Leslie Koziara, ERMP May 7, 2009 A GUIDE TO WASHINGTON STATE’S APPROVAL PROCESS FOR THE DESTRUCTION.
Records Management: The Public Records Act, the Library of Virginia, and You Glenn Smith Records Management Analyst.
UPDATING RIGHT OF WAY MANUALS FLORIDA’S PROCEDURES.
Managing Records: Good government, Better business. FOI Presentations to Boards & Committees Cayman Islands National Archive November 2008.
An introduction to records management at Clemson University Records Center is located at the Library Depot 103 Clemson Research Blvd Anderson, S.C
Records Management at East Carolina University Application of Records Retention and Disposition Schedules.
Presentation Title | May 4, 2009 Records Retention Date: February 19, 2014 Contracts and Compliance.
RECORDS MANAGEMENT DEPARTMENT OF THE TREASURY, DIVISION OF REVENUE AND ENTERPRISE SERVICES, RECORDS MANAGEMENT SERVICES.
RECORDS MANAGEMENT Office of Business Affairs. OBJECTIVES Four main objectives of a Records Management Program: –Increase efficiency of record keeping.
Vermont Training Program Procedure Division of Emergency Management & Homeland Security October 21, 2015.
Records Management and University Archives at Clemson University.
Business Services Safety Office N EW E MPLOYEE O RIENTATION.
Presentation Title | May 4, 2009 Contracts and Compliance Administration & Finance.
Records Management in Government Prepared by the Information Management Unit Saskatchewan Archives Board.
Registrar RML Training Records Management Assistance (281) Records Management 1.
 The laws vary from state to state. The California Medical Association website states:  There is no general law requiring a physician to maintain records.
Records Management Program Records Management 101.
Records Retention and Disposition Naugatuck Valley Community College
TOPSpro Special Topics
Records Management Compliance Training
Records Management at UW-Whitewater
Final HIPAA Security Rule
EProve School Safety Report Due October 24th, 2018
County HIPAA Review All Rights Reserved 2002.
Information Security Awareness
Arizona State Library, Archives and Public Records
Presentation transcript:

State Agencies’ Records Retention Schedule S6: Information Systems Records S6 Retention Schedules

State of CT Schedules S1 - Administrative Records (rev. 1/2010) S2 - Personnel Records (rev. 1/2010) S3 - Fiscal Records (rev. 1/2010) S4 - Health Records (rev. 11/2010) NEW –Records Retention Policy for Hospital Closures, Mergers, and Consolidations S5 - Higher Education Records (rev. 1/2010) S6 - Electronic Data Processing Records –Now ‘Information Systems Records” S7 - Full-Time Post Secondary Programs in Vocational-Technical School Systems S8 - Correctional Facilities Records S9 - Libraries, Archives and Museums (under development) S10 - Public Safety and Emergency Services Records NEW

S6: Information Systems Records The S6 Records Retention Schedule defines the record types and the retention requirements for records that are commonly generated during evaluation, implementation, management and use of an Information System. Examples: Systems Logs, Source Code, Support Records

S6 Review Committee Representatives from several State Agencies convened to review the original S6: Data Processing Records retention schedule that was last revised in The original schedule was quickly discarded and a new one was created based on current technology and terminology.

S6: General Intent Defines the minimum length of time the agency/department must maintain the record. –These are NOT requirements to “generate” a specific record type – If you don’t generate the record, there is no requirement to maintain it. –Generation of the record is based on operating procedures, policies and department functions

S6: Disposition Documentation of disposal of log data occurs in two ways: Certificate of Compliance RC-108

Certificate of Compliance Certifies that the department will meet the retention and disposition requirements established by the Office of the Public Records Administrator in State Agencies’ Records Retention/Disposition Schedule S6: Information Systems Records. Allows the agency/department to destroy certain types of records automatically (without an RC-108) so long as the destruction is in accordance with the minimum retention –Information Systems Backup Recovery Media –Information Systems Data or Database Dictionary Documentation –Information Systems Usage Records –And many others!

Certificate of Compliance Compliance with the S6: Information System Records Retention Schedule would be unmanageable without the Certificate Completed Annually Signed certificate must be maintained for 1 year after expiration Must be submitted by June 30 th. Download your Certificate of Compliance from

RC-108 Without a Certificate of Compliance, the department must complete an RC-108 to dispose of records. Examples include: –For deleting system logs –When making modifications to operating procedures –Before overwriting backups –Download the RC-108 form from here:

S6,Series 10: Administratively Valuable “Until no longer administratively valuable.” –It is recommended that each agency documents how long individual usage records are maintained pursuant to defined administrative value. The same log types on multiple systems may have different values to an organization based on the use or users of a system, application, device, etc.

ISO Retention Schedule Regulations, laws, and business requirements supersede minimum retention requirements. Example – A regulation requires system logs to be maintained for 6 months, but the retention schedule only requires 3 weeks. – Maintain the information for 6 months. Information Security Office examples CategorySchedule Access Logs6 Months System Logs12 Months Traffic Logs3 Months Incident Logs4 Months

Splunk The Information Security Office is managing most series 10 related log retention schedules through Splunk. Each index has a custom retention schedule, currently: –1 Week –1 Month –3 Months –4 Months –6 Months –12 Months –18 Months –6 Years (default, if not otherwise configured) Data is automatically purged when it reaches the defined expiration

Splunk Additional custom indexes can be created. Agent install is fast and virtually effortless for basic log types. Supports specialized application and database log files. Log harvesting, parsing and alerting tools. Robust searching and analysis features. Role Based Access Control.

In Closing S6 has been updated, is clearer, more useable Only logs that are collected apply Certificate of Compliance or RC-108 required for disposal ‘administratively useful’ needs to be documented Splunk is available to any department collecting records Contact the security office for more information. S6 documentation/tools on security.uconn.edu

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.