My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
1.6 ERMUSR 03-08-2022
ElkRiver
>
City Government
>
Boards and Commissions
>
Utilities Commission
>
Packets
>
2022
>
03-08-2022
>
1.6 ERMUSR 03-08-2022
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
3/4/2022 3:42:56 PM
Creation date
3/4/2022 3:42:56 PM
Metadata
Fields
Template:
City Government
type
ERMUSR
date
3/8/2022
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
12
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
ERMUCommissionPolicyG.2g3Information Security CommitteeCharter <br />______________________________________________________________________________ <br />the Committee action shall not be inconsistent with applicable laws and policies which regulate <br />the City of Elk River. The Committee meetings may be open or closed to employees at the <br />discretion of the Committee Chair. <br />AUTHORITY: <br />Except as established in this Committee Charter, the authority of the Committee is limited tothe <br />purpose of research and recommendation to ERMU and the City. <br />SPECIFIC DUTIES: <br />1.Policies and Procedures:Assist ERMU andtheCityin the development of information <br />security related policies.Review effectiveness of information security policy <br />implementations.Identify and recommend how to handle non-compliance. Assist with the <br />development of information security related procedures, standards, guidelines, and baselines <br />to the ERMU and theCity.At least annually, provide timely reportsincluding <br />recommendations regarding effectiveness of polices and procedures to ERMU and City <br />leadership teams. <br />2.Risk Assessment:Review industry appropriate information security trendsto maintain an up- <br />to- <br />Identify significant threats and vulnerabilities. Assess the adequacy and coordination of the <br />implementation of information security controls. Recommend methodologies and processes <br />for information security. Evaluate ongoing related legal and regulatory compliance changes. <br />Review incident information and recommend follow-up actions. At least annually, provide <br />timelyreportsincluding recommendationregarding risksassessment to ERMU and City <br />leadership teams. <br />3.Budget Development:Develop dataneeded for thorough evaluation of proposed information <br />security initiativesfor budget preparation and consideration. Information shall include <br />options, risk evaluation, resource requirements, implementation timelines, and costs. At least <br />annually and coordinating with their respective budgeting process schedules, provide timely <br />reports regarding information security initiatives proposed for consideration to ERMU and <br />City leadership teams. <br />4.Education and Awareness:Function as an information security program champion providing <br />roved security <br />initiatives and policies.Develop and implement plans and programs to maintain information <br />security awareness. Promote information security education, training, and awareness <br />throughout ERMU and the City. <br />SCHEDULE: <br />At a minimum, the Committee shall meet on an annualbasis. <br />______________________________________________________________________________ <br />Page 2of3 <br />16 <br />
The URL can be used to link to this page
Your browser does not support the video tag.