Skip Maine state header navigation
Skip First Level Navigation | Skip All Navigation
 |
| Home | Newsroom | Calendar | Contact Us | Site Map |
New OIT Policies and Procedure Adopted
By, Lisa Leahy, OIT The purpose of this policy is to assure that OIT employees, contractors, consultants, and temporaries handling cardholder data adhere to the guidelines and procedures detailed in the Office of the Treasurer's Credit Card Information Security Policy and Guidelines. Auditing the effectiveness and efficiency of information technology (IT) controls statewide ensures a robust, non-biased risk analysis is in place. The purpose of the internal audit is to review and measure the established risk management procedures and controls. Investigating documentation, management oversight, policy and corrective measures fall within the auditor's purview. This policy provides guidance to OIT employees regarding OIT's dedicated internal audit function. Procedure for Secure ID Cards and Maintenance of the RSA Database The purpose of this standard operating procedure (SOP) is to govern the accountability and procedures for Secure ID cards. The preceding policies and procedure were recently adopted. All staff engaged in operations, analysis or actions subject to or appropriate for the application of a policy, standard or procedure are responsible for becoming familiar, and complying, with the contents of all OIT policies, standards and procedures. Supervisors are responsible for incorporating standard operating procedures to ensure their staffs are familiar with, and adhere to, the policies, standards or procedures affecting their program functions. All OIT policies, standards and procedures are posted to the OIT Policy, Standards and Procedures web site upon adoption. Article posted on: June 15, 2009Comments on this article? Send us your feedback. |
| Copyright © 2009 All rights reserved. |