ITPolicyTemplate它的策略模板.docx
《ITPolicyTemplate它的策略模板.docx》由会员分享,可在线阅读,更多相关《ITPolicyTemplate它的策略模板.docx(5页珍藏版)》请在冰豆网上搜索。
ITPolicyTemplate它的策略模板
IT-Policy-Template:
它的策略模板
DOCUMENTINFORMATIONSHEETTitle:
ITPolicySubject:
NamethePolicySubjectDate:
[PublishDate]Author:
AuthorNameJobTitle:
Whatisyourjobtitle?
Department:
Whatisyourdepartment?
Phone:
Whatisyourcontactphonenumber?
Email:
Whatisyourcontactemail?
Version:
1.0[tip:
Usesmallincrements(1.1.,1.2etc.)forminorchangesandlargerincrementsformajorchanges(2.0,3.0,etc.)]Status:
Chooseanitem.ContentsDOCUMENTINFORMATIONSHEET.....................................................................................1DOCUMENTNOTES......................................................................................................................41.0POLICYOVERVIEW...............................................................................................................51.1PolicyDescription............................................................................................................51.2PolicyType..........................................................................................................................51.2PolicyPurpose...................................................................................................................51.3Background.........................................................................................................................52.0POLICYSCOPE........................................................................................................................62.1PolicyAssumptions..........................................................................................................62.2PolicyConstraints.............................................................................................................62.3ScopeInclusions................................................................................................................62.4ScopeExclusions...............................................................................................................73.0POLICYSTAKEHOLDERS....................................................................................................83.1DevelopmentStakeholders..........................................................................................83.2ImplementationStakeholders.....................................................................................83.3EnforcementStakeholders...........................................................................................93.4End‐Users.............................................................................................................................94.0POLICYPROCEDURES......................................................................................................104.1EnforcementProcedures............................................................................................104.2OperationalProcedures..............................................................................................104.3AdministrativeProcedures.......................................................................................104.4CommunicationProcedures.....................................................................................105.0POLICYCOSTSANDBENEFITS.....................................................................................125.1EstimatedCosts..............................................................................................................125.2PolicyRisksandConstraints.....................................................................................125.2FinancialBenefits..........................................................................................................125.3OperationalBenefits.....................................................................................................125.4OrganizationalBenefits...............................................................................................126.0POLICYADMINISTRATION............................................................................................136.1ContactInformation.....................................................................................................136.2FeedbackandVersionControl.................................................................................13ENDOFPOLICY...........................................................................................................................14AppendixA:
Approvals......................................................................................................14DOCUMENTNOTESITPolicyPurpose:
ThepurposeofthisITPolicyistoprovideadocumentedbasisforpolicyimplementation,execution,approvalanddissemination.DocumentControl:
UsethisspacetorecordnotesandinformationregardingITPolicypreparationandversioncontrol.Addrowstothetabletomakeadditionalentries.Entry#1DateClickheretoenteradate.VersionNotes1.0ThefirstdraftoftheITPolicyiscreated.1.0POLICYOVERVIEW1.1PolicyDescriptionProvideabriefnarrativetodescribethesubjectpolicy.Example:
TheAssetManagementPolicyprovidesguidelinesandprocedurestogoverntheacquisition,allocation,trackingandconfigurationoftechnologyhardware,softwareandrelatedequipmentandmaterials.1.2PolicyTypeIsthispolicydesignedtoaddressaneed,fulfillamandate,orsolveaproblem?
1.2PolicyPurposeWhatistheplannedpurposeofthesubjectpolicyconsideringthefollowingvariables?
1.PolicyGoals2.PolicyObjectives3.ExpectedResults4.AnticipatedValue1.3Background1.Areanysimilarpoliciescurrentlyinplace?
2.Haveanysimilarpolicieseverbeeninplace?
3.Havethesepoliciesbeeneffective?
4.Ifnot,whatissueswerefaced?
5.Howwasthispolicyproposedanddeveloped?
6.Whywaspolicyproposedanddeveloped?
7.Howisthispolicygoingtodifferfromprevious,similarpoliciescurrentlyinplaceorinplaceatonetime?
2.0POLICYSCOPEUsethissectiontodescribeanddetailtheplannedscope1ofthesubjectpolicy.2.1PolicyAssumptionsDescribetheunderlyingassumptionsformingtheplannedpolicyscope.1.ExpectedResults(Whatwillthispolicyaccomplish?
)2.IdentifiedPriorities(Howimportantisthispolicy?
)3.Risksvs.RewardsAnalysis(Dotherewardsexceedtherisks?
)4.InternalCapabilities(Dowehavethecapabilitiestoimplementandenforce?
)2.2PolicyConstraintsDescribeanyknownconstraintslimitingpolicyscope.1.Costs2.Complexity3.LackofResourcesand/orSkills4.LackofManagementSupport5.End‐userResistance2.3ScopeInclusionsDescribethepolicyscopeinclusionsforeachofthefollowing:
1.OperationalScope(Whataretheoperationaltargetsandimplications?
)2.ProceduralScope(Whataretheproceduralrequirementsandimplications?
)3.OrganizationalScope(Howwillthepolicybeappliedwithinthesubjectorganizationandend‐usercommunity?
)1PolicyScope=Whatdoesthepolicycover,howisittobeused,andtowhomdoesitapply?
2.4ScopeExclusionsDescribethepolicyscopeexclusionsforeachofthefollowing:
1.OperationalScope2.ProceduralScope3.OrganizationalScope3.0POLICYSTAKEHOLDERSUsethissectiontolistthekeypolicystakeholders2anddescribeassignedrolesandresponsibilities.Descriptionsshouldbeprovidedinsufficientdetailtoensurethatallpolicystakeholderrolesandresponsibilitieshavebeenfullydefinedandcommunicated.3.1DevelopmentStakeholders1.Whoarethepolicydevelopmentstakeholders?
2.Whataretheirassignedrolesandresponsibilities?
Table1DevelopmentStakeholdersStakeholderNameNameDevelopmentResponsibilitiesResponsibilitydescription.Insertadditionalrowsasrequired.3.2ImplementationStakeholders1.Whoaretheimplementationstakeholders?
2.Whataretheirassignedrolesandresponsibilities?
Table2ImplementationStakeholdersStakeholderNameNameImplementationResponsibilitiesResponsibilitydescription.Insertadditionalrowsasrequired.2PolicyStakeholder:
Anypartyororganizationalentitywithaninterestinthedevelopment,implementation,executionandoutcomeofthesubjectpolicy.3.3EnforcementStakeholders1.Whoarethepolicyenforcementstakeholders?
2.Whataretheirassignedrolesandresponsibilities?
Table3EnforcementStakeholdersStakeholderNameNameEnforcementResponsibilitiesResponsibilitydescription.Insertadditionalrowsasrequired.3.4EndUsers1.Whoarethepolicyend‐users?
2.Whataretheirassignedrolesandresponsibilities?
Table4PolicyEndUsersEndUserEntityOrganizationalNameResponsibilitydescription.Insertadditionalrowsasrequired.EndUserResponsibilities4.0POLICYPROCEDURESUsethissectiontolistanddescribetheproceduralstepsrequiredtoenforce,operate,administerandcommunicatethesubjectpolicies.Thesedescriptionsshouldbesufficientlydetailedtoensurethatallprocedurescanbefollowedandthatenduserexpectationsareproperlyset.Thecodingsequenceisusedtofacilitateprocedureidentification.4.1EnforcementProceduresListtheplannedproceduresrequiredtoenforcethesubjectpolicy.Table5EnforcementProceduresCode4.1.04.1.1ProcedureDescribethefirstprocedure.Insertrowstodocumentadditionalprocedures.4.2OperationalProceduresListtheplannedoperationalproceduresrequiredtoputthepolicyintopractice.Table6OperationalProceduresCode4.2.04.2.1ProcedureDescribethefirstprocedure.Insertrowstodocumentadditionalprocedures.4.3AdministrativeProceduresListtheplannedproceduresrequiredtoadministerthesubjectpolicy.Table7AdministrativeProceduresCode4.3.04.3.1ProcedureDescribethefirstprocedure.Insertrowstodocumentadditionalprocedures.4.4CommunicationProceduresListtheplannedcommunicationproceduresrequiredtodistributeanddisseminatethesubjectpolicy,ensuringthatallstakeholdersarefullyinformed.Table8CommunicationProceduresCode4.4.04.4.1ProcedureDescribethefirstprocedure.Insertrowstodocumentadditionalprocedures.5.0POLICYCOSTSANDBENEFITSUsethissectiontolistanddescribetheestimatedcostsanda