Overview

Roy Whitney

December 1, 2010 

Remote Access Review

Charge

• Determine whether remote access to operational systems, e.g. accelerator controls, experiment including target controls, and core IT systems is appropriate, is appropriately protected, and is appropriately managed. Consider:– Engineered Solutions: Are they appropriately deployed?– Policy: Are appropriate policies in place?– Procedures: Are procedures in place and are they appropriately

documented?– Operations: Are the staff with access to the operational systems

trained, and are the procedures efficient and effective?– Performance and QA: Are performance measures and/or quality

assurance activities in place? Have residual risks been identified?

Charge

• Take the Risk Management Approach where both successful mission delivery and residual risks are considered. Risks include personnel safety, equipment safety and cyber security.

• Recommendations of the committee will inform Lab leadership and management on whether current controls are adequate or whether there are suggested changes.

Areas

1. Lab & IT – Andy Kowalski

2. Accelerator – Brad Cumbia

3. Experimental Areas – Graham Heyes

4. Target Systems – Michael Lowry

5. FEL – Wes Moore

6. Cryogenic Systems – Jonathan Creel

7. PSS – Kelly Mahoney

8. Test Lab – Kirk Davis

9. CANS & HVAC – Carroll Jones

10.ESH&Q/Radcon – Vashek Vylet