overview roy whitney december 1, 2010 remote access review
TRANSCRIPT
Overview
Roy Whitney
December 1, 2010
Remote Access Review
Charge
• Determine whether remote access to operational systems, e.g. accelerator controls, experiment including target controls, and core IT systems is appropriate, is appropriately protected, and is appropriately managed. Consider:– Engineered Solutions: Are they appropriately deployed?– Policy: Are appropriate policies in place?– Procedures: Are procedures in place and are they appropriately
documented?– Operations: Are the staff with access to the operational systems
trained, and are the procedures efficient and effective?– Performance and QA: Are performance measures and/or quality
assurance activities in place? Have residual risks been identified?
Charge
• Take the Risk Management Approach where both successful mission delivery and residual risks are considered. Risks include personnel safety, equipment safety and cyber security.
• Recommendations of the committee will inform Lab leadership and management on whether current controls are adequate or whether there are suggested changes.
Areas
1. Lab & IT – Andy Kowalski
2. Accelerator – Brad Cumbia
3. Experimental Areas – Graham Heyes
4. Target Systems – Michael Lowry
5. FEL – Wes Moore
6. Cryogenic Systems – Jonathan Creel
7. PSS – Kelly Mahoney
8. Test Lab – Kirk Davis
9. CANS & HVAC – Carroll Jones
10.ESH&Q/Radcon – Vashek Vylet