3:00PM – Audit/Compliance is always hard to liveblog because it is a very technical committee. but we’ll give it a shot. The Committee passed an action item – giving Pricewaterhouse Cooper the engagement to update and relook at our broken payroll system. Apparently our payroll system is so broke nowadays, that there are campuses whose systems will collapse if not replaced in a number of years, and systems that are so old, only one person on the campus knows how to work the system.
Audit/Compliance also passed their annual compliance report, which you can find and dissect at http://www.universityofcalifornia.edu/regents/regmeet/aug10/a3.pdf
The quick highlights were that there were two campuses missing Compliance Officers, which was a problem, and they were supported by UCOP compliance and audit work.
4PM – The UC also has gained, this summer, the first insurance policy that covers the entire UC system’s cyberrisk (all our IT infrastructure). The insurance policy is meant to be a “carrot” on the campuses so units will want to house their servers centrally on a campus, so they could get insurance coverage for their data. Regent Makarechian notes that the insurance policy may be so broad that the UC may never win a filing on these terms, UCOP respnods that this is 1) better than our current insurance coverage and 2) helps centralize IT and pushes best practices 3) and will probably cover the much of the breaches that have happened in the past. The premium (annual, i believe) will be 500k dollars, to cover all of the UC IT systems.