The assessment process will include the following:
Introduction and Executive Summary - Information Technology Services (ITS) will provide an overview of the unit and its Information Technology (IT) infrastructure as determined by the ITS assessment team. The Executive Summary notes major areas of concern and proposed solutions to issues identified as part of the IT assessment process.
Information Technology Administration and Management - ITS will review and report on how the IT environment is currently managed. This assessment will cover areas such as existing IT projects, plans, staffing, budgets and any documentation relating to current IT policies and procedures.
IT User Satisfaction Survey - ITS will conduct a survey to determine any IT related issues that the unit's IT user community may have. The results of the survey will be provided to the unit along with recommendations to address any areas of concern that have been identified based on the results of the survey.
Network Infrastructure - ITS will conduct a systematic review of the networking infrastructure necessary to support both wired and wireless networks in the unit. This includes the condition of the current network wiring and its pathways, as well as the networking equipment, such as routers and switches. Any improvements that are needed will be identified and proposal will be given to make those improvements.
Telephone/Cellular Service Survey - ITS will conduct a survey of current telephone usage, including cellular service. Suggestions and recommendations for improvements will be made, including any changes necessary to update the existing telephone system to current FSU specifications.
Network Services - ITS will evaluate the type of Directory Services used by the unit (such as Microsoft's Active Directory or the Lightweight Directory Access Protocol (LDAP)) within its network environment. Use of Domain Name Service (DNS) and Dynamic Host Configuration Protocol (DHCP) will be assessed. Password and user access policies will be evaluated for standards and configuration. Network infrastructure needed for disaster recovery and backup services will be evaluated. The use of network-based vulnerability scans or reports will be assessed. An assessment will be made of any applications used to monitor the network, servers, and applications. Use of Virtual Private Networks (VPN) will be reviewed. The use of any third party cloud-based IT services (such as Google Apps, iCloud, Carbonite) will be evaluated for conformity to FSU standards and security standards.
Server Infrastructure and Applications - ITS will assess the back-end server infrastructure used by the unit, including server hardware, operating systems, specifications, warranty, support contract and server inventory. Data storage and protection such as backup and recovery solutions and storage technologies (such as Network Attached Storage (NAS) and Storage Area Network (SAN)) will be assessed. The team will also evaluate server operating system patch management, server -based applications such as e-mail, calendaring, instant messaging, as well as collaboration tools such as Microsoft's SharePoint server. ITS will assess the areas where services are being deployed from (server rooms) for security, power, cooling, network and redundancy. Existing use of virtualization technologies and opportunities for virtualization will be explored. ITS will also look at any database services used (Oracle, SQL Server, MySQL, other) and any reporting tools that might be used.
Workstations, Peripherals, and Software - ITS will assess the customer's current workstation environment including hardware (computers and peripherals) and software. ITS will evaluate life cycle management and patch management of hardware and software to ensure that they conform to computing best practices as set forth by ITS. ITS will determine the unit's unique support needs while reviewing their existing support model including documentation, maintenance plans, and support contracts and how support requests are reported and handled.
IT Security - ITS will conduct interviews, gather documents and related literature to assess the unit's IT Security infrastructure and safeguards for protecting the department's network, applications, computing devices and data. Vulnerability scans will be conducted on the unit's Web servers and all Web applications, as well as database servers/hosts for potential vulnerabilities and personally identifiable information (PII). ITS will ensure all systems and network devices have been properly tested for vulnerabilities to minimize security risks. If the organization has an IT support staff, they will be provided with access and training in the use of the vulnerability scanning tool. Compliance with industry and federal standards for IT security (such as FERPA, PCIDSS, and HIPPA) will be determined.
Specialized and/or Unique Applications - ITS will identify all specialized and/or unique applications used by the unit. Custom written applications will be assessed for compatibility with FSU systems, support, and maintainability issues. Support for 3rd party software will be evaluated.
Audio Visual Equipment and Resources - ITS will evaluate the use of audio/visual equipment to determine how the technology is utilized and managed. Recommendations for improvements will be made.
Web Services - ITS will evaluate the unit's current websites. All aspects of the unit's website, including where it is hosted, how it is maintained and cost of operation will be assessed.