1 / 41

Training Agenda

S tate T echnology A nnual R eport R egister (STARR) Business Continuity Planner (BCP) Training. Training Agenda. STARR Overview Training STARR Purpose What is STARR STARR Roles STARR Data Collection Timeline Responding to a Questionnaire (Video)

alea-duke
Télécharger la présentation

Training Agenda

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. State Technology Annual Report Register (STARR) Business Continuity Planner (BCP) Training

  2. Training Agenda • STARR Overview Training • STARR Purpose • What is STARR • STARR Roles • STARR Data Collection Timeline • Responding to a Questionnaire (Video) • STARR Role Based Training (Business Continuity Planner) • STARR Dashboards • Helpful Tips • When to Contact Agency Super User • Questions

  3. STARR Overview Training

  4. STARR Purpose O.C.G.A. 50-25-4(8), (13) & 50-25-7.10, the State CIO is responsible for collecting and publishing an information technology report that covers the state’s current and planned use of technology for the purpose of making recommendations on the needs and opportunities for the enterprise. Governor’s Executive Order on March 2008 requires agencies to report on the status of their agency information security program.

  5. What is STARR • STARR serves as a data repository for State IT, Security and supports the annual report • Replaces the existing tool • Information Technology Governance Report (ITGR) with a tool where the majority of data will be entered via questionnaires (similar to Survey Monkey) • Uses web based questionnaires to enter and validate data • STARR questionnaires are targeted to specific roles • Standard Questions encompassing role-specific questions (I.e.. BCP, IT Security, BO) • Entity Questionnaire targeting (I.e.. Agency Super User, Systems Security, CIO, CFO)

  6. What is STARR • The majority of the questionnaires will be pre-populated with pre-existing ITGR data • Provides enhanced Reporting and Dashboard capability

  7. STARR Roles

  8. STARR Roles (1 of 3) • Business Owner (BO) • answers questionnaire on Secure, Reliable, and Sustainable Maturity (SRS Maturity) • Agency Super User • agency point of contact for STARR • responsible for the agency profile questionnaire • has the ability to produce reports • Business Continuity Planner (BCP) • answers questionnaire regarding business continuity planning

  9. STARR Roles (2 of 3) • Chief Information Officer (CIO ) • answers questionnaire regarding business application inventory • answers questionnaire about agency IT Spend • answers questionnaire on Secure, Reliable, and Sustainable Maturity (SRS Maturity) • Senior Agency Information Security Officer (SAISO) • answers questionnaires regarding agency IT systems and security

  10. STARR Roles (3 of 3) • Chief Financial Officer (CFO) • answers questionnaire on the agency IT Spend • Agency Head / Commissioner • will receive a questionnaire to validate agency IT information

  11. STARR Data Collection Timeline

  12. Questionnaire Timeline

  13. Responding to STARR Questionnaires

  14. Responding to STARR Questionnaires Video Please note: The STARR Tool is a SaaS (Software as a Service) Solution. The video you are about to review was produced by our vendor CAI for their tool AMI. Therefore during the videoyou may hear the term “AMI” being used throughout.

  15. Responding to STARR Questionnaire (Video)

  16. Business Continuity (BC) Questionnaire Notice

  17. Sample Business Continuity PlannerEmail Notice Identifies Questionnaire Notification Agency Name identified here Questionnaire Name identified here Questionnaire Due Date Questionnaire Due Date Link to QuestionnaireClick here to start

  18. Sample BC Questionnaire

  19. Sample BC Questionnaire Progress Bar: As you complete Questions, the bar will be highlighted to show progress The reporting fiscal year will be prepopulated

  20. Sample BCP Questionnaire Clicking on the “?” Will display help text The BCP may also attach associated files to the questionnaire. There is a 20 meg size limit and once the questionnaire has been submitted, the file cannot be unattached. To remove or correct a file attachment, the BCP must request a new questionnaire from their Agency Super User ; complete it and resubmit. Click on “Previous Page” willtake you to the previous page Click “Next Page” will take you to the next page

  21. Sample BC Questionnaire This question represents another questionformat type represented on the BC Questionnaire

  22. Sample BC Questionnaire The final BC question is the attestation question Your options are “Yes” or “No”. Please note that your response will be saved and submitted with your questionnaire responses You may click “Previous Page” to go back to the previous page oryou may click “Next Page” to progress forward to the next page

  23. Sample BC Questionnaire When you have answered all the questions and reached this page, you are almost complete. You have 2 options 1. You may click on “Return to the beginning of the assessment to review your answers” or 2. You may click on “Submit your completed assessment“ to complete the submission process

  24. Sample BC Questionnaire

  25. STARR Dashboards The agency data reflected on the dashboard views are driven by the questionnaire responses. Dashboard Types: • Dials • Graphs • Charts

  26. IT Security Dashboard IT Security Dashboard report Agency: • Security Awareness Training: • Security Awareness Training for agency staff (Staff and Contractors) • Record keeping for Security Awareness Training • Security Governance: • Confirmation of a formal documented security program as required by Enterprise Information Security Infrastructure Standard (SS-08-005.01) • Agency's information security governance process

  27. Sample IT Security Dashboard

  28. Sample Business Continuity Dashboard Business Continuity Dashboard reflects the Agency’s: Q1: established guidelines on how emergency situations should be handled by the agency and it’s personnel Q3: documented processes that continue it’s core mission capabilities Q5: identification of key personnel essential to support critical business processes

  29. Application Inventory Dashboard The Application Inventory Graph compiles a summary view of the Agency’s Application Inventory Data segmented by: • Application Spend vs. Budgeted Amount • Application Inventory • Contractor Labor Costs • Employee Labor Costs • Full Time Equivalent (FTE) Information • Contractor • Employee

  30. Sample Application Inventory Dashboard

  31. IT Agency Spend Dashboard The IT Agency Spend Graph compiles a summary view of IT Agency Spend segmented out by Cost Categories • Total Infrastructure Costs • Total Network Costs • Total Application Costs • Total Project Costs (Fiscal Year Spend)

  32. Sample IT Agency Spend Dashboard

  33. Sample SRS Maturity Dashboard The SRS Maturity Dashboard represent cumulative operational responses from Business Owners and CIOs input related to the current state of their agency; data, systems and IT security. The SRS Maturity dials represented on the following page identify: • Secure • Reliable • Sustainable • Overall SRS Average

  34. Sample SRS Maturity Dashboard

  35. Helpful Tips:

  36. Helpful Tips: • Prior to receiving your questionnaire, you will be notified at least a week in advance. If you do not receive the questionnaire within that week; please check your spam file • Make sure you complete your questionnaire prior to the expiration date • Contact your Agency Super User to request a reissue of your questionnaire • Make sure your responses are saved prior to leaving your computer for an extended length of time; In a time-out scenario, your responses will not be saved

  37. Helpful Tips: • Forwarding Questionnaires: • You have the ability to forward a questionnaire to another responsible party prior to your final submission; once a questionnaire is completed (submitted) that questionnaire cannot be re-launched • If a questionnaire is forwarded to another party, your identity (original questionnaire recipient) remains linked to the questionnaire • If a questionnaire has expired, you will not be able to launch the questionnaire; you will need to contact your Agency Super User to request a reissue of the questionnaire

  38. Helpful Tips: • Viewing Questionnaires: • If you have trouble seeing questionnaire wording. You can click on the magnifying glass in the lower right hand corner of the screen to increase or decrease the screen display • Remember to scroll to see the entire screen display • The following link will direct you to the presentation on July 12, 2013 • http://gta.georgia.gov/egap/state-annual-report-register-starr

  39. When to contact your Agency Super User • Reissue of Expired Questionnaires • Resubmit of Questionnaire Attachments • Request Copy of Agency Reports

  40. GTA Contact Information STARR Admin Support (Tier 1): Tometrice Strickland - (404) 463-8474 ITReports@gta.ga.gov STARR Admin Support (Tier 2): Hank Oelze - Hank.Oelze@gta.ga.gov STARR Training: Louis Hampton - Louis.Hampton@gta.ga.gov STARR Business Owner: Teresa Reilly – Teresa.Reilly@gta.ga.gov

  41. Questions

More Related