Posted 5:06 p.m. Friday, Aug. 19, 2022
The August 2022 institution policy distribution includes for comment one (1) revised policy, two (2) new policies, and one (1) new procedure.
One (1) revised policy: SYS 220, Affirmative Action Data Collection Two (2) new policies: SYS 1038, Information Security: Network Protection SYS 1220, Postdoc Absence with Pay and Legal Holidays One (1) new procedure: SYS 1038.A, Network Protection Standard Click on the links above to view the drafts and ensure that your feedback is captured for review during the post-comment period. Comments can include attachments, including word documents and PDFs. Please submit your feedback for the policies by Friday, September 2. Please find summaries of the policies and procedures below. |
DRAFT POLICY REVISIONS SYS 220, Affirmative Action Data Collection The Office of Federal Contract Compliance Programs has updated its guidance surrounding the use of visual observation as a mechanism for determining the race and sex of employees who have not completed a voluntary self-identification. The practice is now discouraged as such observations may not be reliable. The following revisions are proposed for this policy: · This update revises section 6 of the above-listed policy to bring current practices into compliance with this new guidance. |
DRAFT NEW POLICY SYS 1038, Information Security: Network Protection The purpose of this policy is to provide structure for the deployment and management of network controls used to mitigate Information Security threats throughout the University of Wisconsin (UW) System. This policy was developed with a group of subject matter experts representing multiple institutions across UW System. This policy requires: · High-level network security architecture documentation be maintained and include high-level security architecture diagram(s). · Network access controls be employed to monitor and control communications at external boundaries and key internal managed interfaces, and to protect the integrity and confidentiality of transmitted data. · Network IT assets be reasonably secured from unauthorized physical and logical access, and their security-related configuration changes must be documented as part of a defined change management process. · Standards for these policy requirements are further defined in SYS 1038, Information Security: Network Protection Standards. Note: Requirements for authentication to network devices and services are defined in SYS 1030, Information Security: Authentication, and are not duplicated in this policy. |
DRAFT NEW POLICY SYS 1220, Postdoc Absence with Pay and Legal Holidays This policy provides the framework for postdoc absences with pay and legal holidays for all postdocs in the university workforce, except for employees at UW-Madison. This new policy requires: · This policy creates paid leave for postdocs for purposes of illness or medical need. · This policy creates paid leave for postdocs for purposes of personal time off. This policy allows postdocs to receive paid leave for legal holidays. · The policy distinguishes the unique nature of the leave granted to postdocs and clarifies that it is not considered sick leave or vacation leave within the meaning of UWS policies. The leave does not carry over, is not bankable and does not automatically transfer if the employee changes positions within the UW system. |
DRAFT NEW PROCEDURE SYS 1038.A Information Security: Network Protection Standard Standards for the newly proposed SYS 1038, Information Security: Network Protection Standards. The purpose of this procedure is to provide structure and guidance for the deployment and management of Information Technology (IT) network controls used to mitigate Information Security (IS) threats throughout the University of Wisconsin (UW) System. |
