Terry FitzgeraldITP Manual
The ITP Manual is organized into sections with each section identified by a series control number (such as 100, 101, 102, etc.). IT Company policies are assigned numbers within the series control number to coincide with the applicable section. The sections are as follows:
- 100 – Introduction on General IT Policies
- 101 – Policies on Policy
- 110 – Info‐Protection
- 120 – Access Controls
- 130 – Asset Management
- 2xx – IT Procedures Guidelines
- 3xx – IT Standards
Policy
| Doc No. | Title | Status | Posted | DOC | Owner | Version Date | |
|---|---|---|---|---|---|---|---|
| ITP-100 | Introduction General Policies | completed | Yes | DOC | CFO | 05/06/20 | |
| ITP-101 | Policy on Policy | completed | Yes | DOC | CFO | 05/06/20 | |
| ITP-102 | Standard IT Exception Policy | completed | Yes | DOC | |||
| ITP-110 | Confidential and Proprietary Information | completed | Yes | DOC | CFO | 05/06/20 | |
| ITP-111 | Electronic Communication Social Media Policy 9.2 rev 6.7.11 | completed | Yes | DOC | CFO | 06/07/11 | |
| ITP-112 | Computer Usage Agreement_09.2017 | completed | Yes | DOC | VPET | 09/06/17 | |
| ITP-113 | IT Continuity Policy | completed | Yes | DOC | VPET | 05/20/20 | |
| ITP-114 | IT Systems Management Policy | completed | Yes | DOC | VPET | 02/17/20 | |
| ITP-115 | Mobile Computing and Teleworking Policy | completed | Yes | DOC | VPET | 02/17/20 | |
| ITP-120 | Access Control Policy | completed | Yes | DOC | ITA | 03/25/22 | |
| ITP-121 | Data Retention and Destruction Policy | missing | Yes | DOC | |||
| ITP-123 | IT Incident and Data Breach Response Policy | completed | Yes | DOC | CFO | 05/06/20 | |
| ITP-124 | Disaster Recovery Policy | completed | Yes | DOC | CFO | 01/01/21 | |
| ITP-125 | Incident Management Policy | DOC | CFO | 02/20/20 | |||
| ITP-126 | Data Backup Policy | completed | Yes | DOC | CFO | 05/06/20 | |
| ITP-127 | Cloud Security Policy | completed | Yes | DOC | VPET | 12/14/22 | |
| ITP-130 | Asset Management Policy | completed | Yes | DOC | VPET | 05/06/20 | |
| ITP-131 | Asset Security Policy | completed | Yes | DOC | VPET | 05/06/20 | |
| ITP-132 | Clean Desk Policy | completed | Yes | DOC | ITS | 11/06/20 | |
| ITP-133 | Change Management Policy | completed | Yes | DOC | VPET | 05/06/20 | |
| ITP-135 | Vulnerability Management Policy | completed | Yes | DOC | CFO | 03/01/22 | |
| ITP-136 | Risk Management Policy | draft | DOC | ITA | |||
| ITP-137 | Third Party Risk Management Policy | draft | DOC | ITA | |||
| ITP-140 | No | DOC | |||||
| ITP-150 | Payment Card Industry (PCI) Policy | In Review | No | DOC | |||
| ITP-151 | Business Unit Point of Sales (POS) Policy | In Review | No | DOC |
Procedures
| DOC | |||
|---|---|---|---|
| ITG-100 | Organizational Guideline | ||
| ITG-200 | Vulnerability Management Guide | ||
| ITG-220 | User Access Management Procedure | ||
| ITG-220A | New Employee Setup Extract | ||
| ITG-220B | Change User Report Extract | ||
| ITG-220C | Removal of Terminated User Extract | ||
| ITG-220D | WC User List | ||
| ITG-220E | Lawson S3 User Dump | ||
| ITG-221 | Network Standards and Procedures | ||
| ITG-221A | Technology Configuration Survey | ||
| ITG-221B | Security Event Management Process | ||
| ITG-222 | Backup and Recovery Plan | ||
| ITG-223 | IT Incident and Data Breach Procedures | ||
| ITG-226 | IT Data Recovery Plan Run Book | ||
| ITG-230 | Asset Management Procedures | ||
| ITG-233 | Change management procedure | ||
| ITG-240 | Sharepoint IT Guide | ||
| ITG-251 | PCI Security Awareness | ||
| ITG-251A | Security Awareness Training Guide | DOC | |
| ITG-251B | Security Awareness Training Guide | DOC | |
Other Documents
| ITF-110 | Electronic Systems Acknowledgement 2016 | |