There is a planning session for the upcoming legislative session on Monday.
The ServiceNow Steering Committee meets on Wednesday.
The CEO of Periscope will be meeting with faculty and research representatives on Wednesday.
TAMU’s ITAC meets on Thursday.
The Columbia Advisory Group is offering expanded services through the System-wide contract at Commerce. One of the new services is related to Third Party Vendor/Software Certification. Here is a quick synopsis:
NIST 800-53, the basis for State of Texas IT Security and Compliance, requires that all technology vendors be reviewed for their adherence to best practices in keeping sensitive information secure before the product is purchased and at least annually thereafter. Columbia Advisory Group currently provides this service as part of its Information Security Officer offering and can now provide this service to all institutions and agencies. The scope of the offering can be customized but generally includes:
- Provide questionnaire to requestor and gather data needed to determine usage and compliance needs of the product.
- Provide the questionnaire to the vendor in compliance with NIST 800-53.
- Where follow-up is needed, work directly with the vendor to complete the vendor questionnaire.
- Review all information gathered and provide recommendations as to the level of compliance the vendor or their technology has met.
Drafts of revisions to TAC 203, Management of Electronic Transactions and Signed Records, and TAC 210, State Electronic Internet Portal were distributed for ITCHE review and assessment. DIR generally has made minor changes to these rules. The changes are denoted through underlines for new text and brackets with strike-through for deleted text.
Based on their rule schedule, DIR intends to prepare a final draft of the proposed rules for DIR board approval at the October 27, 2016 board meeting. Once approved, the proposed rules will be published in the Texas Register for public comment. To meet this goal, DIR would appreciate ITCHE feedback by October 1, 2016 to allow time to discuss and address any issues you may have. To help streamline this process, DIR appreciates all ITCHE comments be consolidated into one document for each rule chapter with track changes. If you have any comments, I will pass them along to the ITCHE representative that is consolidating notes from all members.
System-Wide Contracting News
Current System-wide Contracts
- Access Data provides members with preservation hold software. (in annual assessment)
- Banner COE provides members with Banner-related services under a master contract (discretionary)
- Cisco SmartNet (discretionary)
- Diligent provides board portal functionality for all members. (discretionary)
- Duo provides two-factor authentication for all members. (discretionary)
- Hootsuite will enable members to manage social networks, schedule messages and measure social media from a dashboard under a master contract. (discretionary)
- Modo Labs provides mobile application development support for all members. (discretionary)
- Proofpoint email filtering and data loss prevention tools are available for all members. (in annual assessment)
- Security Operations Center (in annual assessment)
- Siteimprove checks web pages, every five days, for spelling, grammar, broken links and accessibility. The cost is 54 cents per web page per year. Any member interested in adding this service need to contact me directly. (discretionary)
- StealthWatch provides cyber security monitoring for all members. (in annual assessment)
- Syncplicity licensing is available for all members. (in annual assessment)
- WebEx is available to all members. Faculty/administrators can obtain licenses at the low cost of $1.44/month/license. (discretionary)
- WebQA is the TAMUS approved Freedom of Information Act (FOIA) solution for all members. (in annual assessment)
System-wide Contracts Under Development
- Docusign will provide members with electronic signature and related workflow capabilities under a master contract (discretionary contract).
- Examity will provide members with on-line proctoring services under a one-year master contract (discretionary contract). If you are interested in looking at the proposal, I can forward it to you.
- ProctorU will provide members with on-line proctoring services under a one-year master contract (discretionary contract). If you are interested in looking at the proposal, I can forward it to you.
- Respondus will provide members with on-line proctoring services under a one-year master contract (discretionary contract). If you are interested in looking at the proposal, I can forward it to you.
Project Helios (Workday)
- The functional team began updating the A&M System’s process workbooks, which document the process flows, steps and outputs, security roles, notifications, regulatory and legal requirements, reports and open items for each process group and began working on parking lot items identified during the Prototype 1 reviews.
- The project team finished preparations for the September 6 Prototype 1 acceptance meeting with the EAC.
- Configuration of our second prototype (Prototype 2) continued.
- The testing team began building the User Acceptance Testing Strategy.
- A new governance committee focused on academic and research voices was proposed to the CAOs. The Academic Advisory Committee will begin meeting in October.
- Several trips to the TAMU campus are planned for this week