As announced at our Open Forum last week, the Enterprise Information Security policy team has been working hard on updating the Information Security Policies and Standards to help Providence better prevent, detect, and respond to cyberattack.
The newly updated policies will help us to:
- Better understand where risks are coming from and create a structure to help reduce risks;
- Prioritize activities for maintaining critical operations; and
- Better communicate using a common set of terms and concepts among different groups across the organization
In IS, technology is our world. We fundamentally understand the cyber threat landscape and our role in protecting Providence systems and information. The newly updated policies and standards are structured to help us do just that. The updated policies have been modernized and structured to better organize information and align with how our work in information technology is actually performed.
It’s critical that you are familiar with the policies and standards that impact your daily work. For certain functions in particular, changes to the policies and standards are significant and impact standard operating procedures. To learn more about the new policies, check out the following resources:
- Visit the revamped EIS Policy & Standards SharePoint
- Review the Policy & Standards Update FAQ
- Review the Policy & Standards Overview, which provides one-page summaries of key policies and standards and how they impact all caregivers
If you have specific policy questions, you can also reach out to information.security@providence.org.
We need all Providence caregivers to help prevent, detect, and respond to cyberattacks. Enterprise Information Security thanks you for your help in spreading the word about cybersecurity.