Laserfiche WebLink
City of Colton <br />AGENDA REPORT <br />FOR COUNCIL MEETING OF JULY 15, 1997 <br />TO: HONORABLE MAYOR AND CITY COUNCIL <br />APPROVAL: GRACIE FERNANDEZ HARMON, ACTING CITY MANAGER <br />FROM: ANNA A. VEGA, FINANCE DIRECTOR <br />SUBJECT: CONSIDERATON OF ADMINISTRATIVE — INFORMATION SYSTEM (COMPUTER) <br />POLICY <br />DATE: JULY 9, 1997 <br />BACKGROUND <br />Over the last 18 months the City of Colton has made substantial investments in hardware and software computer <br />applications. Therefore, staff has developed an administrative policy to safeguard the City's investments. <br />DISCUSSION/ANALYSIS <br />The main policy objectives are to maintain the integrity of the data and programs of all computer systems and <br />personal computers in the City of Colton and protect the systems and data against unauthorized disclosure, <br />modifications or destruction. There are four other less significant however important, objectives to the policy that are <br />identified on page 3 of the policy. <br />Page 2 is a summary of the information systems security policy. It is identified by 13 salient points, which are as <br />follows: <br />1) All access to computer must be authorized. <br />2) Each Department Head shall designate one staff member to serve as the Information Systems (I.S.) Liaison, <br />who may authorize access to that department's database and to specified network applications. <br />3) Users should only be allowed to access data that relates to their job, task, projects or assignments. <br />4) Any change in employee status must be immediately reported to the I.S. Division by the Department Head or <br />the Department's I.S. Liaison. <br />5) Except in circumstances specifically authorized by the I.S. Division, there should be only one user per user <br />I.D. and password. <br />6) Each user department updates its own data, controls access to that data and is therefore responsible for its <br />validity. <br />7) The acquisition of all computer hardware, software and related consulting service must be approved by the <br />I.S. Division before purchase orders can be issued. <br />8) Only software approved and purchased by the City is allowed on the City's computers. Absolutely no games <br />are to be played on City computers <br />9) I.S. Division oversees the computer systems and is responsible for the integrity and backup of data on the <br />network servers. However, each user department retains responsibility for the validity of its data. <br />10) I.S. Division is responsible for security administration on the network. However, each personal computer <br />user is responsible for security administration on the individual personal computer (P.C.) system used. <br />11) The I.S. Division is responsible for technical support. <br />12) Only the I.S. Division technical staff is authorized to relocate or remove hardware, install or remove software, <br />perform maintenance repairs, and request assistance from the Electric Utility for cabling projects. <br />13) Internal recording of access will be monitored and any attempted variance from the authorized use of system <br />resources will be reported to the department head or supervisor for appropriate action. <br />FINANCIAL IMPACT None <br />RECOMMENDATION <br />That the City Council adopt the attached Administrative Information System (Computer) Policy and have it included <br />as part of the City's Policies and Procedures. <br />Item No. 19 <br />