Author: scheng96

In the Works 0 – In the Works Content (706)

Governance

Data Governance

Data Governance is a collection of policies, business processes, and best practices to ensure proper governance and management of these Institutional data assets. Data Governance is charged with guiding policy and business processes to ensure our data is governed, managed, secured, and compliant.

Learn More
Endpoint

Endpoint Security Compliance

Pursuant to University System of Georgia (USG) policy, Section 5.8, all USG organizations must implement endpoint security by “deploying tools that add a layer of security to devices connecting to networks that may otherwise make them vulnerable to cyber attacks.”

Learn More

Customer Engagement 2 – Projects (632)

Projects

CE-01: Develop, implement, and maintain an organizational change management strategy to inform, socialize, and prepare customers for data-related change, fully understand current state, gaps, and ideal state.

CE-02: Develop, implement, and maintain a communication plan and schedule for data related initiatives, solutions, and news.

CE-03: Develop, implement, and maintain a web presence to enhance and further support customer engagement efforts.

CE-04: Develop, implement, and maintain a data resource and services hub to facilitate knowledge articles, requests for information/support/access, and links to tools.

CE-05: Establish a training plan that identifies, develops and maintains a series of training modules based on customers that builds data management knowledge across the Institute and aligns with data-related roles.

CE-06: Create customer community/network with different subgroups (e.g., Advisory Group, Data SMEs Network, etc).

CE-07: Develop, implement, and maintain an on-going strategy for customer engagement and support for data.

CE-08: Develop, implement, and maintain an assessment program to monitor the usability and effectiveness of technology solutions, services, and training.

CE-09: Create an annual Institute data sharing and data awards event (#gtdataday)

News & Updates

Stay up-to-date on Data Excellence news and events.

Learn More

Customer Engagement 0 – Customer Engagement Contents (620)

Customer Engagement

Develop and implement a strategy to build a community of practice that empowers individual and cross-collaborative awareness, engagement, training, access, and support to build a data first culture.

Projects

CE-01: Develop, implement, and maintain an organizational change management strategy to inform, socialize, and prepare customers for data-related change, fully understand current state, gaps, and ideal state.

CE-02: Develop, implement, and maintain a communication plan and schedule for data related initiatives, solutions, and news.

CE-03: Develop, implement, and maintain a web presence to enhance and further support customer engagement efforts.

CE-04: Develop, implement, and maintain a data resource and services hub to facilitate knowledge articles, requests for information/support/access, and links to tools.

CE-05: Establish a training plan that identifies, develops and maintains a series of training modules based on customers that builds data management knowledge across the Institute and aligns with data-related roles.

CE-06: Create customer community/network with different subgroups (e.g., Advisory Group, Data SMEs Network, etc).

CE-07: Develop, implement, and maintain an on-going strategy for customer engagement and support for data.

CE-08: Develop, implement, and maintain an assessment program to monitor the usability and effectiveness of technology solutions, services, and training.

CE-09: Create an annual Institute data sharing and data awards event (#gtdataday)

News & Updates

Stay up-to-date on Data Excellence news and events.

Learn More

Governance & Management 2 – Projects (614)

Projects

GM-01: Create and formalize a data governance structure, including committees and roles with assigned responsibilities.

GM-02: Create and publish data governance related polices, guidelines, procedures, and resources.

GM-03: Create and formalize a technology governance structure, including committees and roles with assigned responsibilities.

GM-04: Create and publish technology governance related polices, guidelines, procedures, and resources.

GM-05: Align data and technology governance structures, establishing in-takes, hand-offs, and workflows.

GM-06: Implement a data management platform that will: inventory data assets (e.g., systems inventory), manage the entry and maintenance of assets, provide easy discovery of assets, enhance the capabilities of access/security/privacy, and enable better data services to customers.

GM-07: Create and establish a series of data categorizations that foster rich meta-data of our assets (e.g., data domains).

GM-08: Implement an enterprise capability for responsible roles to monitor and assess data quality.

GM-09: Create and publish data lifecycle (i.e., retention and disposition) related policies, guidelines, procedures, and resources.

GM-10: Address compliance risk to USG data governance requirements.

IN THE WORKS
Data Governance

Georgia Tech is in the process of establishing a data governance structure. Data governance is charged with guiding policy and business processes to ensure our data is governed, managed, secured, and compliant.

Learn More

Governance & Management 0 – GM Contents (599)

Governance & Management

Create and implement the structure, policies, processes, and technology needed to appropriately identify, govern, and manage data and IT assets.

Projects

GM-01: Create and formalize a data governance structure, including committees and roles with assigned responsibilities.

GM-02: Create and publish data governance related polices, guidelines, procedures, and resources.

GM-03: Create and formalize a technology governance structure, including committees and roles with assigned responsibilities.

GM-04: Create and publish technology governance related polices, guidelines, procedures, and resources.

GM-05: Align data and technology governance structures, establishing in-takes, hand-offs, and workflows.

GM-06: Implement a data management platform that will: inventory data assets (e.g., systems inventory), manage the entry and maintenance of assets, provide easy discovery of assets, enhance the capabilities of access/security/privacy, and enable better data services to customers.

GM-07: Create and establish a series of data categorizations that foster rich meta-data of our assets (e.g., data domains).

GM-08: Implement an enterprise capability for responsible roles to monitor and assess data quality.

GM-09: Create and publish data lifecycle (i.e., retention and disposition) related policies, guidelines, procedures, and resources.

GM-10: Address compliance risk to USG data governance requirements.

IN THE WORKS
Data Governance

Georgia Tech is in the process of establishing a data governance structure. Data governance is charged with guiding policy and business processes to ensure our data is governed, managed, secured, and compliant.

Learn More

Security, Privacy & Risk 2 – Projects (593)

Projects

SPR-01: Create and publish data security policies and protected data practices based on the principle of least privilege and data minimization

SPR-02: Create and implement a 24×7 Data Security Incident Response Program

SPR-03: Develop and implement an Automatic Data Labelling and associated Digital Right Management programs

SPR-04: Develop and implement an Enterprise Data Loss Prevention Program

SPR-05: Adopt a Zero-Trust based enterprise approach to control access to data, application, and services

SPR-06: Ensure endpoint compliance with management and protection tools to limit the likelihood of data loss due to compromised or loss/stolen devices

SPR-07: Develop and implement a comprehensive Enterprise Data Access and Usage Audit program

SPR-08: Create and formalize a data privacy program structure, including committees and roles with assigned responsibilities.

SPR-09: Create and publish data privacy related policies, notices, procedures, guidelines, and resources based on the principle of least privilege and data minimization

SPR-10: Create and maintain technology resources, processes and procedures to respond to individual data subject requests

SPR-11: Define a Data Risk Advisory Board and appoint members

SPR-12: Create and maintain a data-oriented risk register reviewed periodically by the Data Risk Advisory Board

IN THE WORKS
Endpoint Security Compliance

Based on USG recommendations, the Institute is implementing controls in support of its endpoint management and protection program.

Learn More

Security, Privacy & Risk 0 – SPR Contents (583)

Security, Privacy & Risk

Ensure appropriate and necessary privacy standards, security standards, and data regulations requirements are met to achieve optimal balance between maximizing data assets usage versus managing risks related to data availability and utilization.

Projects

SPR-01: Create and publish data security policies and protected data practices based on the principle of least privilege and data minimization

SPR-02: Create and implement a 24×7 Data Security Incident Response Program

SPR-03: Develop and implement an Automatic Data Labelling and associated Digital Right Management programs

SPR-04: Develop and implement an Enterprise Data Loss Prevention Program

SPR-05: Adopt a Zero-Trust based enterprise approach to control access to data, application, and services

SPR-06: Ensure endpoint compliance with management and protection tools to limit the likelihood of data loss due to compromised or loss/stolen devices

SPR-07: Develop and implement a comprehensive Enterprise Data Access and Usage Audit program

SPR-08: Create and formalize a data privacy program structure, including committees and roles with assigned responsibilities.

SPR-09: Create and publish data privacy related policies, notices, procedures, guidelines, and resources based on the principle of least privilege and data minimization

SPR-10: Create and maintain technology resources, processes and procedures to respond to individual data subject requests

SPR-11: Define a Data Risk Advisory Board and appoint members

SPR-12: Create and maintain a data-oriented risk register reviewed periodically by the Data Risk Advisory Board

IN THE WORKS
Endpoint Security Compliance

Based on USG recommendations, the Institute is implementing controls in support of its endpoint management and protection program.

Learn More