BP.00.001 - Business Practice on Business Practices

Printable Version in PDF Format (Get Adobe Acrobat)

Table of Contents

History [top]

  • Business Practice Number: BP.00.001
  • Version: 2
  • Drafted By: Peter Mosinskis
  • Approved By: Michael Berman
  • Approval Date: 08/03/2010
  • Latest Revision Date: 11/13/2012

Purpose [top]

Describe the purpose and process for T&C Business Practices.

Background [top]

Formally, there are no policies at CSU Channel Islands other that those approved by the President's Council and published as part of the Channel Islands Administrative Manual at http://policy.csuci.edu/.  T&C as a division does not have the authority to create a Policy outside the formal campus process.  However, there is clearly the need for day-to-day guidance on many issues that may never be formalized as a campus policy.  In addition, policies can and should gloss over important implementation details that need to be documented.  T&C Business Practices have been created to address these needs.

Business Practice [top]

Accountability [top]

The VP for Technology and Communication is accountable for oversight of the T&C Business Practice Process.

Applicability [top]

All T&C employees.

Definition(s) [top]

For the purposes of this business practice, the following key terms are identified as follows:

  1. "Shall" and "must" are used in the imperative sense
  2. "May" is used in the permissive sense
  3. The use of the masculine gender includes the feminine, and vice versa

Throughout the business practice manual, unless otherwise defined by an individual business practice:

  1. "T&C" means Technology & Communication.
  2. "CMS" means Common Management System.
  3. "CFS" means Consolidated Finance System.
  4. "IDS" means intrusion detection system.
  5. "ISO" means Information Security Officer.
  6. "LMS" means Learning Management System.
  7. "VISC" means Virtual Information Security Center.
  8. "WCMS" means Web Content Management Systems.

Text [top]

General

A T&C Business Practice is a policy-like document that describes how T&C solves certain issues or assigns resources. A T&C Business Practice may be "promoted" to a policy if there is a legal or procedural need to do so, by following the standard campus approval process. T&C Business Practices may also supplement Policies, since a Policy really ought to be a "why" document, while a Business Practice is a "how" document. For consistency and simplicity, T&C Business Practices will be formatted using the same template as campus policies, but clearly labeled as business practices to avoid confusion. All T&C Business Practices will be reviewed by T&C Leadership, approved by the VP for Technology & Communication, and posted on the T&C Business Practice Website http://www.csuci.edu/tc/policy/.

T&C Business Practices are organized by extending the numbering scheme for CSU Channel Islands Policies:

  • 00 -T&C General (extension of Policy numbering scheme)
  • 01 - Information Management
  • 02 - Technology Infrastructure
  • 03 - Technology Use
  • 04 - Information Security,Risk, Policy and Compliance

Deviation Authority Process

The VP for Technology & Communication may grant deviations from T&C Business Practices when legitimate business or academic needs require such deviations. Each person requesting a deviation from a T&C Business Practice should submit deviation requests in writing to the VP for Technology & Communication. Each deviation authorization will be transmitted in writing or by e-mail from the VP for Technology & Communication to the person requesting the deviation and will specifically cite the Business Practices from which deviations are authorized.

Exhibit(s) [top]

No exhibits have been associated with this business practice.

Assessment History [top]

Description Frequency Role Assigned
Review of business practice.  Annual              Director of IT Strategy          
©