ITPolicyTemplate它的策略模板.docx

1、ITPolicyTemplate它的策略模板 IT-Policy-Template：它的策略模板 DOCUMENTINFORMATIONSHEETTitle: IT PolicySubject:NamethePolicySubjectDate: Publish DateAuthor: Author NameJob Title: What is your job title?Department: What is your department?Phone: What is your contact phone number?Email: What is your contact email?V

2、ersion: 1.0 tip:Usesmallincrements(1.1.,1.2etc.)forminorchangesandlargerincrementsformajorchanges(2.0,3.0,etc.)Status: Choose an item.ContentsDOCUMENT INFORMATION SHEET . 1DOCUMENT NOTES . 41.0 POLICY OVERVIEW . 51.1 Policy Description . 51.2 Policy Type . 51.2 Policy Purpose . 51.3 Background . 52.

3、0 POLICY SCOPE . 62.1 Policy Assumptions. 62.2 Policy Constraints. 62.3 Scope Inclusions . 62.4 Scope Exclusions . 73.0 POLICY STAKEHOLDERS . 83.1 Development Stakeholders . 83.2 Implementation Stakeholders. 83.3 Enforcement Stakeholders . 93.4 EndUsers . 94.0 POLICY PROCEDURES . 104.1 Enforcement P

4、rocedures. 104.2 Operational Procedures . 104.3 Administrative Procedures . 104.4 Communication Procedures . 105.0 POLICY COSTS AND BENEFITS . 125.1 Estimated Costs . 125.2 Policy Risks and Constraints. 125.2 Financial Benefits . 125.3 Operational Benefits. 125.4 Organizational Benefits. 126.0 POLIC

5、Y ADMINISTRATION . 136.1 Contact Information . 136.2 Feedback and Version Control . 13END OF POLICY . 14Appendix A: Approvals . 14DOCUMENTNOTESITPolicyPurpose:The purpose of this IT Policy is to provide a documented basis for policyimplementation, execution, approval and dissemination.DocumentContro

6、l:Use this space to record notes and information regarding IT Policypreparation and version control. Add rows to the table to make additionalentries.Entry#1DateClick here toenter a date.Version Notes1.0The first draft of the IT Policy is created.1.0POLICYOVERVIEW1.1PolicyDescriptionProvide a brief n

7、arrative to describe the subject policy. Example:TheAssetManagementPolicyprovidesguidelinesandprocedurestogoverntheacquisition,allocation,trackingandconfigurationoftechnologyhardware,softwareandrelatedequipmentandmaterials.1.2PolicyTypeIs this policy designed to address a need, fulfill a mandate, or

8、 solve a problem?1.2PolicyPurposeWhat is the planned purpose of the subject policy considering the followingvariables?1. Policy Goals2. Policy Objectives3. Expected Results4. Anticipated Value1.3Background1. Are any similar policies currently in place?2. Have any similar policies ever been in place?

9、3. Have these policies been effective?4. If not, what issues were faced?5. How was this policy proposed and developed?6. Why was policy proposed and developed?7. How is this policy going to differ from previous, similar policiescurrently in place or in place at one time?2.0POLICYSCOPEUsethissectiont

10、odescribeanddetailtheplannedscope1ofthesubjectpolicy.2.1PolicyAssumptionsDescribe the underlying assumptions forming the planned policy scope.1. Expected Results (What will this policy accomplish?)2. Identified Priorities (How important is this policy?)3. Risks vs. Rewards Analysis (Do the rewards e

11、xceed the risks?)4. Internal Capabilities (Do we have the capabilities to implement andenforce?)2.2PolicyConstraintsDescribe any known constraints limiting policy scope.1. Costs2. Complexity3. Lack of Resources and/or Skills4. Lack of Management Support5. Enduser Resistance2.3ScopeInclusionsDescribe

12、 the policy scope inclusions for each of the following:1. Operational Scope (What are the operational targets and implications?)2. Procedural Scope (What are the procedural requirements andimplications?)3. Organizational Scope (How will the policy be applied within the subjectorganization and enduse

13、r community?) 1 Policy Scope = What does the policy cover, how is it to be used, and to whom does it apply?2.4ScopeExclusionsDescribe the policy scope exclusions for each of the following:1. Operational Scope2. Procedural Scope3. Organizational Scope3.0POLICYSTAKEHOLDERSUsethissectiontolistthekeypol

14、icystakeholders2anddescribeassignedrolesandresponsibilities.Descriptionsshouldbeprovidedinsufficientdetailtoensurethatallpolicystakeholderrolesandresponsibilitieshavebeenfullydefinedandcommunicated.3.1DevelopmentStakeholders1. Who are the policy development stakeholders?2. What are their assigned ro

15、les and responsibilities?Table1DevelopmentStakeholdersStakeholderNameNameDevelopmentResponsibilitiesResponsibility description.Insert additional rows as required.3.2ImplementationStakeholders1. Who are the implementation stakeholders?2. What are their assigned roles and responsibilities?Table2Implem

16、entationStakeholdersStakeholderNameNameImplementationResponsibilitiesResponsibility description.Insert additional rows as required. 2 Policy Stakeholder: Any party or organizational entity with an interest in the development, implementation,execution and outcome of the subject policy.3.3EnforcementS

17、takeholders1. Who are the policy enforcement stakeholders?2. What are their assigned roles and responsibilities?Table3EnforcementStakeholdersStakeholderNameNameEnforcementResponsibilitiesResponsibility description.Insert additional rows as required.3.4EndUsers1. Who are the policy endusers?2. What a

18、re their assigned roles and responsibilities?Table4PolicyEndUsersEndUserEntityOrganizationalName Responsibility description.Insert additional rows as required.EndUserResponsibilities4.0POLICYPROCEDURESUsethissectiontolistanddescribetheproceduralstepsrequiredtoenforce,operate,administerandcommunicate

19、thesubjectpolicies.Thesedescriptionsshouldbesufficientlydetailedtoensurethatallprocedurescanbefollowedandthatenduserexpectationsareproperlyset.Thecodingsequenceisusedtofacilitateprocedureidentification.4.1EnforcementProceduresList the planned procedures required to enforce the subject policy.Table5E

20、nforcementProceduresCode4.1.04.1.1ProcedureDescribe the first procedure.Insert rows to document additional procedures.4.2OperationalProceduresList the planned operational procedures required to put the policy intopractice.Table6OperationalProceduresCode4.2.04.2.1ProcedureDescribe the first procedure

21、.Insert rows to document additional procedures.4.3AdministrativeProceduresList the planned procedures required to administer the subject policy.Table7AdministrativeProceduresCode4.3.04.3.1ProcedureDescribe the first procedure.Insert rows to document additional procedures.4.4CommunicationProceduresLi

22、st the planned communication procedures required to distribute anddisseminate the subject policy, ensuring that all stakeholders are fullyinformed.Table8CommunicationProceduresCode4.4.04.4.1ProcedureDescribe the first procedure.Insert rows to document additional procedures.5.0POLICYCOSTSANDBENEFITSUsethissectiontolistanddescribetheestimatedcostsanda