Presentation is loading. Please wait.

Presentation is loading. Please wait.

MATCHING DATA with IT SERVICES Berkeley Data Authorization Process CISPC, April 19, 2012 Lisa Ho, IT Policy Manager, Berkeley Privacy & Policy Office.

Published bySabrina Joseph Modified over 8 years ago

Similar presentations

Presentation on theme: "MATCHING DATA with IT SERVICES Berkeley Data Authorization Process CISPC, April 19, 2012 Lisa Ho, IT Policy Manager, Berkeley Privacy & Policy Office."— Presentation transcript:

1 MATCHING DATA with IT SERVICES Berkeley Data Authorization Process CISPC, April 19, 2012 Lisa Ho, IT Policy Manager, Berkeley Privacy & Policy Office

2 The Questions Berkeley Data Authorization Process

3 The Answers Classify campus data  Definitions and process Secure campus data  Authorize data use  Approve services (on and off campus) for a data class Develop an information bank  Publish approved services  Reduce duplication of work Respond to the Business Finance Bulletin IS-2  Classify, inventory, and define appropriate security controls for institutional data Berkeley Data Authorization Process

4 What is the process? A: General System Inventory B: Protected Data Screen C: Data Privacy Questionnaire D: Privacy Impact Assessment E: Data Classification F: Baseline Risk Questionnaire G: Information Risk Assessment H: Resource Proprietor Approval Berkeley Data Authorization Process B: Protected Data? B: Protected Data? A: General System Inventory H: Resource Proprietor Approval Data Authorization Issued No More Review Yes https://security.berkeley.edu/content/data-authorization-process-draft

5 High-level Rollout Plan Pilot  Off-site hosting  Systems in the spotlight Expand to other systems Eventually align with campus OE initiatives Berkeley Data Authorization Process

Download ppt "MATCHING DATA with IT SERVICES Berkeley Data Authorization Process CISPC, April 19, 2012 Lisa Ho, IT Policy Manager, Berkeley Privacy & Policy Office."

Similar presentations

Substantive Change Process

Substantive Change Process
Presented by: Denise Sjahkit SURINAME. Introduction Overview of the main policy issues Scope Current compilation practices Data-sources Requirements for.

Presented by: Denise Sjahkit SURINAME. Introduction Overview of the main policy issues Scope Current compilation practices Data-sources Requirements for.
Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.
IAPP 2004. 2 CONFIDENTIAL Insider Leakage Threatens Privacy.

IAPP CONFIDENTIAL Insider Leakage Threatens Privacy.
Federal Risk and Authorization Management Program (FedRAMP) Lisa Carnahan, Computer Scientist National Institute of Standards & Technology Standards Coordination.

Federal Risk and Authorization Management Program (FedRAMP) Lisa Carnahan, Computer Scientist National Institute of Standards & Technology Standards Coordination.
1 USA PATRIOT ACT 9 th Annual Factoring Conference Grand America Hotel – Salt Lake City, UT Brian J. Peretti, Esq. US Department of the Treasury Office.

1 USA PATRIOT ACT 9 th Annual Factoring Conference Grand America Hotel – Salt Lake City, UT Brian J. Peretti, Esq. US Department of the Treasury Office.
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.
Developing a Records & Information Retention & Disposition Program:

Developing a Records & Information Retention & Disposition Program:
With Development of National e-Agriculture Strategy In collaboration with.

With Development of National e-Agriculture Strategy In collaboration with.
University of California, Davis1 Draft Wireless Network Policy Administrative Computing Coordinating Council September 10, 2001.

University of California, Davis1 Draft Wireless Network Policy Administrative Computing Coordinating Council September 10, 2001.
University of Guelph IT Security Policy Doug Blain Manager, IT Security ISC, April 27th.

University of Guelph IT Security Policy Doug Blain Manager, IT Security ISC, April 27th.
HRB Webinar Health Research Awards 2015. Content Objective of the call Scope and Panels Principal Investigator Response to peer-reviewers (rebuttal) Some.

HRB Webinar Health Research Awards Content Objective of the call Scope and Panels Principal Investigator Response to peer-reviewers (rebuttal) Some.
Affiliated Information Security Collaborative An Affiliated Enterprise Approach to Information Security Deans and Vice Presidents Meeting April 17, 2014.

Affiliated Information Security Collaborative An Affiliated Enterprise Approach to Information Security Deans and Vice Presidents Meeting April 17, 2014.
UNLV Data Governance Executive Sponsors Meeting Office of Institutional Analysis and Planning August 29, 2006.

UNLV Data Governance Executive Sponsors Meeting Office of Institutional Analysis and Planning August 29, 2006.
Lottery Funds Audit & Changes to Lottery Policies/Guidelines Chris Canfield, Assoc. Budget Dir., CSU System Budget Office, CO Bradley D. Olin, Dir. of.

Lottery Funds Audit & Changes to Lottery Policies/Guidelines Chris Canfield, Assoc. Budget Dir., CSU System Budget Office, CO Bradley D. Olin, Dir. of.
Complying With The Federal Information Security Act (FISMA)

Complying With The Federal Information Security Act (FISMA)
Peer Information Security Policies: A Sampling Summer 2015.

Peer Information Security Policies: A Sampling Summer 2015.
XBRL Voluntary Program on the EDGAR System April 2005 Brigitte Lippmann Attorney Division of Corporation Finance Jeffrey Naumann Enabling Technologies.

XBRL Voluntary Program on the EDGAR System April 2005 Brigitte Lippmann Attorney Division of Corporation Finance Jeffrey Naumann Enabling Technologies.
Heat Network Partnership

Heat Network Partnership

Similar presentations

Ads by Google