2013-2016 Technology Plan - Osceola County School District
2013-2016 Technology Plan - Osceola County School District
2013-2016 Technology Plan - Osceola County School District
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Management Information Systems<br />
Administrative and Instructional <strong>Technology</strong><br />
14Segregation of Duties: The district segregates duties to reduce the risk<br />
that unauthorized transactions will be entered and not discovered<br />
quickly.<br />
The Information and <strong>Technology</strong> Services Department is an independent group<br />
responsible for data processing. System security does not allow the Information and<br />
<strong>Technology</strong> Services personnel access to transaction input. Security for input transactions<br />
is maintained by the Finance Department. No recommendation.<br />
Data processing - development<br />
The Information and <strong>Technology</strong> Services Department is independent of the organizations that depend on<br />
it for data. The Information and <strong>Technology</strong> Services director is responsible for approving new<br />
development. Development entails analysis, coding, and requires thorough testing. Newly developed<br />
applications are tested first in the test environment and then moved into the production environment only<br />
after customers have had a chance to thoroughly test the new application.<br />
Security<br />
The Network Communications Specialist for Networking maintains LAN/WAN network access. Various<br />
applications residing on networked file servers have been assigned to staff in that department to maintain,<br />
including security. The Information Services Systems analyst maintains AS 400 system access. AS 400<br />
application security is also maintained by a designated a person at the district. A formal request is made<br />
for user access to both the student information and finance applications in TERMS. This formal request<br />
is then processed and the user is granted access. When employees are terminated network and application<br />
access is denied. Reports can be printed to show users and the authorities they are granted.<br />
15User Controls: The district’s user controls ensure authorization prior to<br />
processing transactions and ensure all output represents authorized and<br />
valid transactions.<br />
The district has procedures in place to insure that information entered into the AS 400<br />
business applications are authorized, accurate and input only once. No recommendation.<br />
Authorization<br />
To enter a transaction, a user must log into the network with a valid user id and password. Once logged<br />
into the network the AS 400 restricts usage of TERMS based on user id and password. Authorization to<br />
access a specific application depends upon the users function. Users are given levels of access depending<br />
on what their role in the organization is. For example, data entry clerks who have read, write and delete<br />
privileges in the Student Information System may not have access to the Financial Information System.<br />
Other users have access to both systems but are only permitted to view the data or print reports and are<br />
not allowed to make changes to the data.<br />
OPPAGA 6-35<br />
<strong>2013</strong> Educational <strong>Technology</strong> <strong>Plan</strong> 35/40 <strong>School</strong> <strong>District</strong> of <strong>Osceola</strong> <strong>County</strong> Florida