File #: 23-1089    Version: 1
Type: Agenda Item Status: Approved
File created: 5/24/2023 In control: Board of Supervisors
On agenda: 7/25/2023 Final action: 7/25/2023
Title: Information Technologies Department recommending the Board approve revisions to the adopted Board Policy A-19 - General Network Usage Policy and to the associated General Network Usage and Access Procedures and Guidelines. FUNDING: N/A
Attachments: 1. A - A-19 General Network Usage Policy, 2. B - A-19 General Network Usage Policy Redline, 3. C - A-19 General Network Use Access Procedures, 4. D - A-19 General Network Use Access Procedures Redline, 5. E - A-19 General Network Usage Policy Approved Blue Route
Related files: 20-1577, 17-1140, 17-0518, 09-0656, 06-1995

Title

Information Technologies Department recommending the Board approve revisions to the adopted Board Policy A-19 - General Network Usage Policy and to the associated General Network Usage and Access Procedures and Guidelines.

 

FUNDING:  N/A

Body

DISCUSSION / BACKGROUND

Information Technologies Department (IT) is recommending that the Board of Supervisors approve revisions to the previously adopted Board Policy A-19 - General Network Usage Policy, which defines the acceptable use of computer equipment and network resources for all users of El Dorado County (EDC) Network Resources to protect both the User and the County from risk of exposure from misuse or an unauthorized breach of government information systems.  The last update to Policy A-19 was in December 2020.  The proposed revisions include provisions for cloud environments, an updated user privacy policy and clarification of ownership of network resources, and remote access information.

 

Along with Policy A-19, IT has updated the General Network Usage and Access Procedures and Guidelines document, which contains the procedures and standards regarding the use of County network resources in support of policy A-19.  This supplemental document was last updated in May 2022.  Updates include expanded definitions of terms, Data Access information, User Access Credential information, password and MFA requirements, shared drive and data storage procedures, and electronic messaging communication changes.

 

All Departments and the IT Steering Committee have had the opportunity to review the proposed changes.

 

ALTERNATIVES

The Board could request additional modifications to the A-19 Policy.

 

PRIOR BOARD ACTION

20-1577 12/08/2020

17-0518 07/18/2017

09-0656 08/18/2009

06-1995 02/13/2007

 

OTHER DEPARTMENT / AGENCY INVOLVEMENT

County Counsel, Human Resources/Risk Management, and Department Heads.

 

CAO RECOMMENDATION / COMMENTS

Approve as recommended.

 

FINANCIAL IMPACT

There is no direct financial impact to updating this policy.  Indirectly, the proposed policy should assist in minimizing the County’s liability.

 

CLERK OF THE BOARD FOLLOW UP ACTIONS

Update the Board Policy Manual with the revised A-19 policy document.

 

STRATEGIC PLAN COMPONENT

Good Governance

 

CONTACT

Tonya Digiorno, Director of Information Technologies