Timeline for Aligning with SPG 601.27

The revised Information Security (SPG 601.27) was published in summer 2018, along with a number of supporting IT standards. All university units are participating in a two-year phased implementation process leading toward full compliance by December 31, 2020.

Timeline for Implementing SPG 601.27

  1. August–November '18
    • Begin meetings with stakeholders, IT governance, IT groups, unit reps and advisory groups
    • Begin comms to university community about SPG 601.27 and standards
  2. December '18
    • Meet with units and unit IT staff
    • Begin convening Standards Advisory Group
    • Continue to expand Safe Computing guidance / docs
  3. December '18
    • Continue meeting with units and unit IT staff
    • Continue monthly information sessions on individual Standards
    • Continue to expand Safe Computing guidance / docs
  4. February-June '19
    • Hold 6 standards information sessions
    • Meet with units and unit IT staff
    • Continue to expand Safe Computing guidance / docs
  5. March–July '19
    • Create Communities of Practice for each standard
    • Continue meeting with units and unit IT staff
    • Annual check-in with stakeholders, advisory group, IT governance, IT groups & unit reps
  6. August '19-September '19
    • Continue meeting with units and unit IT staff
  7. October '19-December '20
    • Units consider conducting a self-assessment of progress toward alignment
    • Dec. 31, 2020: End of initial two-year phase-in