Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Resource Stewardship A suggested approach for managing the critical information assets of the organization.

Published byLester Farmer Modified over 8 years ago

Similar presentations

Presentation on theme: "Information Resource Stewardship A suggested approach for managing the critical information assets of the organization."— Presentation transcript:

1 Information Resource Stewardship A suggested approach for managing the critical information assets of the organization

2 Information Resource Stewardship Is… A business framework in which all information resources (i.e., data, applications and technology) are managed intentionally, and carefully; similarly to other critical business resources.

3 Information Resource Stewardship Arises… Out of a strategic vision for MSU’s enterprise business systems; that they should: Make data accessible and useful for work; Provide trust (security, compliance, consistency and integrity); Be available, robust and support business continuity; Have a coherent and consistent overall design and framework; Streamline and automate business processes.

4 Objectives for Information Resource Stewardship Protect, maintain and secure the quality and integrity of the institution’s data Promote adherence to common standards that ensure consistency and accuracy Foster technological designs and implementations that support process integration Provide information required to make informed business decisions, at all levels of the institution Provide access to the right data by the right people at the right time

5 These objectives are brought together to form “The Framework” for institutional Information Resource Stewardship at MSU

6 “The Framework” for Institutional Information Resource Stewardship 1. Data coherence Data models Data definitions Data security and confidentiality policy Data security and confidentiality (data access) practices Network security Host system security Application and database security Physical security 2. System integration Middleware design, policies and practices Integration architecture 3. Data security and confidentiality 5. Business rules coherence 4. Records management Records management policies: paper and electronic Workflow design, policies and practices Document imaging practices Systems of record Functional data stewardship responsibility assignment 6. Data usability and business value to the user (e.g.,business intelligence, analytics, decision support) Data integrity Work process security

7 Data Coherence Data Coherence: Assuring the consistency, integrity and “auditability” of institutional data by adhering to best practice principles of database and system design with regard to data modeling; creating and maintaining institutional “meta-data” dictionaries and repositories; understanding and establishing formal “systems of record”; recognizing and establishing functional roles for data stewardship.

8 System Integration System Integration: Making data that are shared across the institution available where and when they are needed. This involves a functional understanding of the processes that require and use the data, and the articulation of the proper technical infrastructure (i.e., “middleware”) that best supports them.

9 Data Security & Confidentiality Data Security and Confidentiality: Developing and maintaining not only access policies and best practice standards for access, but the physical and logical security systems and platforms to ensure the safety, viability and coherence of data, and to satisfy legal and regulatory requirements.

10 Records Management Maintaining required information as records (digitally or on paper) over time. This involves the proper maintenance and disposition of information (records) having permanent (or long term) historical, legal, administrative or fiscal significance, and includes institutional standards for document “imaging”.

11 Business Rules Coherence Business Rules Coherence: Developing and maintaining the policies, practices, and procedures to create, update and use data in consistent ways.

12 Data Usability Data Usability and Business Value to the User: Ensuring that data are useful to people for the effective and efficient conduct of business; that data vital to useful analysis and decision support are available, robust and understandable.

13 Identity Management Is an excellent example of why Information Resource Stewardship is critical

14 Juxtaposition of Process and Data More often than not, processes exist “vertically” in an organization (as much as we try to tear down “silos”, they certainly exist and arise naturally) Data, however, cut across processes This “orthogonality” must be managed carefully. The “Framework” identifies the components that are essential to this management

15 Juxtaposition of Process and Data (Identity Management is a PERFECT example) Processes where identifying a person consistently is important (using Students, and a few typical Student Processes) Student Enrolmnt & Regis. Student Emplmnt Student Payroll Student ID’s Housing Identity Characteristics (NAME, DOB, PID, SSN, etc.) cut across ALL of these processes (and certainly others)

16 Problems Result When… This shared nature of data across processes is not recognized or managed. Think of the problems that arise when: The same student has multiple PIDS (duplicates) The same student has different names in different systems The same student has different SSN’s in different systems There are inconsistent definitions for these critical pieces of identity data There are different rules (in each system) for updating one of these critical pieces of identity data The pieces exist in multiple places (but are needed by one system)

17 How Could the Framework Help? Data coherence: Consistent definitions for each identity component Identification of a single source system of record for each component; where is each component (e.g., name, dob, etc.) added, maintained, and retrieved? System integration: Developing the proper technical platform for keeping core identity information (that may be maintained elsewhere), and making it available where needed and when needed (at the first possible instance? When appropriate?) Identification and linking of data from systems of record

18 How Could the Framework Help? (con’t) Data Security & Confidentiality Much of the core identity data are sensitive and/or confidential What should the access, and update rules be that preserve this confidentiality, but promote the effectiveness and needed efficiencies of business processes? How do we keep the data safe from intrusion? Records Management Where and how do we store our copies of these data? For how long should we retain these records, and in what form?

19 How Could the Framework Help? (con’t) Business Rules Coherence Development of rules for maintaining core identity data, as well as identification of where this updating will take place, when it will take place (What type of “physical” evidence is needed for proving identity? Under what conditions, for example, do we accept a name change? How do we verify a death?) These rules apply institution wide, are documented and widely communicated Data Usability Centralized identity management will ensure consistency of results (e.g., issuance of a single net ID per person) The integrity of core identity attributes is maintained and assured in each of the processes

Download ppt "Information Resource Stewardship A suggested approach for managing the critical information assets of the organization."

Similar presentations

The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross.

The Impact of Auditing on Records Management Risk and Compliance Susan B. Whitmire, CRM, FAI Manager, Enterprise Records and Information Management BlueCross.
Presentation by Priyanka Sawarkar

Presentation by Priyanka Sawarkar
What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.

What is GARP®? GARP® is an Acronym for Generally Accepted Recordkeeping Principles ARMA understands that records must be.
Overview of IS Controls, Auditing, and Security Fall 2005.

Overview of IS Controls, Auditing, and Security Fall 2005.
Institutional Repositories It’s not Just the Technology New England Archivists Boston College March 11, 2006 Eliot Wilczek University Records Manager Tufts.

Institutional Repositories It’s not Just the Technology New England Archivists Boston College March 11, 2006 Eliot Wilczek University Records Manager Tufts.
ACG 6415 SPRING 2012 KRISTIN DONOVAN & BETH WILDMAN IT Security Frameworks.

ACG 6415 SPRING 2012 KRISTIN DONOVAN & BETH WILDMAN IT Security Frameworks.
Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.

Connecting People With Information DoD Net-Centric Services Strategy Frank Petroski October 31, 2006.
Oncor’s EIM Program.

Oncor’s EIM Program.
Developing a Records & Information Retention & Disposition Program:

Developing a Records & Information Retention & Disposition Program:
© Prentice Hall 2002 14.1 CHAPTER 14 Managing Technological Resources.

© Prentice Hall CHAPTER 14 Managing Technological Resources.
An Introduction to the Hennepin County Hennepin County GIS Technical Advisory Group (eGTAG) 10/20/2009.

An Introduction to the Hennepin County Hennepin County GIS Technical Advisory Group (eGTAG) 10/20/2009.
Alliance for Strategic Technology (AST) SUNY Business Intelligence Initiative January 8, 2009.

Alliance for Strategic Technology (AST) SUNY Business Intelligence Initiative January 8, 2009.
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
UNLV Data Governance Executive Sponsors Meeting Office of Institutional Analysis and Planning August 29, 2006.

UNLV Data Governance Executive Sponsors Meeting Office of Institutional Analysis and Planning August 29, 2006.
LEVERAGING THE ENTERPRISE INFORMATION ENVIRONMENT Louise Edmonds Senior Manager Information Management ACT Health.

LEVERAGING THE ENTERPRISE INFORMATION ENVIRONMENT Louise Edmonds Senior Manager Information Management ACT Health.
DATA GOVERNANCE: Managing Access Jeremy Singer Suneetha Vaitheswaran.

DATA GOVERNANCE: Managing Access Jeremy Singer Suneetha Vaitheswaran.
Peer Information Security Policies: A Sampling Summer 2015.

Peer Information Security Policies: A Sampling Summer 2015.
Auditing Logical Access in a Network Environment Presented By, Eric Booker and Mark Ren New York State Comptroller’s Office Network Security Unit.

Auditing Logical Access in a Network Environment Presented By, Eric Booker and Mark Ren New York State Comptroller’s Office Network Security Unit.
Chapter 10: Authentication Guide to Computer Network Security.

Chapter 10: Authentication Guide to Computer Network Security.
Justice Information Network Strategic Plan Development Justice Information Network Board March 18, 2008 Mo West, JIN Program Manager.

Justice Information Network Strategic Plan Development Justice Information Network Board March 18, 2008 Mo West, JIN Program Manager.

Similar presentations

Ads by Google