18 Questions
Who is responsible for managing patching needs for servers and workstations on the network?
IT department
Who approves monthly and emergency patch deployments and monitors and reports the outcome of each patching cycle to the Agency LASO?
IT department
What is the purpose of the VoIP policy?
To define standards and procedures for the implementation of VoIP telephone systems
Who shall review all security relevant patches, service packs, and hot fixes from vendors?
IT department
What happens when IT receives alerts and advisories from US Cert, FDLE, FBI, NIST, Cisco, and others?
They take appropriate action depending on the alert
What is the purpose of basic security awareness training?
To provide employees with security awareness training
What must employees do before downloading or installing any file, software, or other materials from the Internet or other external sources?
Take prescribed steps to preclude infection by computer viruses
What happens to the Police Department central computer and the City's central e-mail computer system during the workweek?
They are backed up daily
Do employees maintain any right to privacy in EMD equipment or its contents?
No
Who is responsible for managing patching needs for servers and workstations on the network?
IT department
Who approves monthly and emergency patch deployments and reports the outcome of each patching cycle to the Agency LASO?
IT department
What is the purpose of the VoIP policy?
To define standards and procedures for the implementation of VoIP telephone systems
What should employees do if they want to request service?
Contact the City I.T. Section
What is the consequence of downloading or installing files, software, or other materials from the Internet or other external sources without taking prescribed steps to preclude infection by computer viruses?
Computer virus infection
Who should approve any hardware enhancements or additions to agency-owned equipment?
Police Department
What is the frequency of the required basic security awareness training for all personnel who have access to CJIS?
Biennially
What is the purpose of releasing security alerts and advisories to IT departments?
To ensure knowledge of newly discovered threats that may affect Agency Information Systems
What is the backup frequency for the Police Department central computer and the City's central e-mail computer system?
Daily
Study Notes
IT Policies and Procedures for Security and Maintenance
- IT department will manage patching needs for servers and workstations on the network, assess compliance, and provide guidance on security and patch management issues.
- IT approves monthly and emergency patch deployments and monitors and reports the outcome of each patching cycle to the Agency LASO.
- The agency’s IT department shall review all security relevant patches, service packs, and hot fixes from vendors.
- Security alerts and advisories are released to IT departments to ensure knowledge of newly discovered threats that may affect Agency Information Systems.
- IT monitors and/or receives alerts and advisories from US Cert, FDLE, FBI, NIST, Cisco, and others and records all alerts and related actions in an information log for Agency records.
- Once an alert has been received or detected and has been determined to be a credible threat, IT will notify the Agency LASO and take appropriate action depending on the alert.
- Employees must direct all requests for service to the City I.T. Section, and any hardware enhancements or additions to agency-owned equipment must be approved by the Police Department or City System Administrator.
- Employees are advised that they do not maintain any right to privacy in EMD equipment or its contents, to include removable media and personally owned software.
- The Police Department central computer and the City's central e-mail computer system will have daily back-up procedures performed during the workweek.
- Employees shall not download or install on their department-issued computer or network terminal any file, software, or other materials from the Internet or other external sources without taking prescribed steps to preclude infection by computer viruses.
- Basic security awareness training shall be required within six months of initial assignment and biennially thereafter for all personnel who have access to CJIS.
- The purpose of the VoIP policy is to define standards and procedures for the implementation of VoIP telephone systems as well as lay out restrictions in regards to criminal justice information.
Test your knowledge on IT policies and procedures for security and maintenance with this quiz! From patch management to employee guidelines, this quiz will challenge your understanding of the protocols and best practices for keeping information systems secure and running smoothly. Keywords: IT policies, procedures, security, maintenance, patch management, employee guidelines, information systems, VoIP policy.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free
