Business and Information Services Policies

Share on Facebook Share on Twitter Share on Linkedin Email this link

Staff are invited to provide comments on the following draft policies:

  • Acceptable Use of Information and Communications Technology Policy
  • Cyber Security Policy
  • Records Management Policy

You can view the draft documents by clicking on the links above or viewing on the right hand side of this page.

It is anticipated that these policies will be adopted by ELT and placed on the Intranet.

Thank you in advance for your participation in this feedback process.

Contact: Toby Adams, Business and Information Services x5568

Deadline for comments: Friday 26 June, 2020

Staff are invited to provide comments on the following draft policies:

  • Acceptable Use of Information and Communications Technology Policy
  • Cyber Security Policy
  • Records Management Policy

You can view the draft documents by clicking on the links above or viewing on the right hand side of this page.

It is anticipated that these policies will be adopted by ELT and placed on the Intranet.

Thank you in advance for your participation in this feedback process.

Contact: Toby Adams, Business and Information Services x5568

Deadline for comments: Friday 26 June, 2020

  • Acceptable Use of Information and Communication Technology Policy

    Share on Facebook Share on Twitter Share on Linkedin Email this link

    The Acceptable Use of Information and Communications Technology Policy is an update to and replacement of the Email & Internet Access Policy. This policy applies to all system users of BMCC’s ICT resources (permanent employees, temporary, casual, work experience, volunteers, Councillors, contractors and authorised external agents) and covers all BMCC ICT facilities, devices and services.

    Council must ensure that its information and communication technology (ICT) facilities, devices and services are used in a manner which is consistent with Council values, and the principles of accountability, confidentiality and information security.

    This policy sets out the constraints and practices that a user must agree to as a condition of access to Council’s corporate network or Council-provided Internet connection. All ICT facilities and services are provided primarily for Council business use and as such must be properly and efficiently used.

    They key update to the policy is to widen the scope from Internet and Email to encompass all Information and Communication Technology.

  • Cyber Security Policy

    Share on Facebook Share on Twitter Share on Linkedin Email this link

    The Cyber Security Policy is an update to and replacement of the Information Technology Security Protocols and Procedures. This policy applies to All staff, Councillors, contractors, committee members, volunteers and members of the public.

    The policy outlines the framework to ensure cyber security risks to information and systems are managed. Cyber security covers all measures used to protect systems - and information processed, stored or communicated on these systems - from compromise of confidentiality, integrity and availability.

    Cyber security risks have continued to evolve in recent years and rapid technological change has resulted in increased cyber connectivity and more dependency on cyber infrastructure.

    The key updates to the policy include alignment with the NSW Cyber Security Policy and the Australian Cyber Security Centre Essential Eight.

  • Records Management Policy

    Share on Facebook Share on Twitter Share on Linkedin Email this link

    The Records Management Policy has been updated with minor changes. It applies to all Council staff including contractors, Councillors, casual and temporary staff.

    Council has a responsibility under the State Records Act 1998 (NSW) (‘State Records Act’) to establish and maintain a records management program in accordance with standards and codes of best practice approved by State Records NSW. The State Records Act and the mandatory Standard No. 12: Standard on Records Management are applicable to all records in both physical and electronic formats and require Council to document business transactions fully and accurately in compliant recordkeeping systems.

    The HP Content Manager (TRIM) is the official recordkeeping system.

    The key update to the policy is to incorporate changes to the relevant Standard AS ISO 15489.1:2017 Information and Documentation - Records Management, Part 1: Concepts and Principles.

  • Submission form

    Share on Facebook Share on Twitter Share on Linkedin Email this link
    CLOSED: This discussion has concluded.

    Click here to go to the submission form.

    The form allows you to make a submission on the following draft strategies:

    • ICT Acceptable Use Policy
    • Cyber Security Policy
    • Records Management Policy

    Your submission must be received by Friday 26 June, 2020.

Page last updated: 17 Jun 2020, 06:34 AM