ASSET MANAGEMENT POLICY - West Hampshire CCG
ASSET MANAGEMENT POLICYVersion 1.1Asset Management Policy COR/059/V1.1Version 1.1September 20191
Subject and version number ofdocument:Asset Management PolicyVersion 1.1Serial number:COR/059/V1.01Operative date:1 October 2019Author:CSU Cyber Security ManagerCCG owner:Senior Information Risk OwnerLinks to other policies:Review date:September 2021For action by:All StaffPolicy statement:This policy provides the framework for the SCWIT Services Asset Management Process whichmust be followed by all SCW staff and externalsuppliers when managing assets on behalf ofcustomers.Responsibility for dissemination tonew staff:Line managers at induction.Mechanisms for dissemination:All new and revised policies are promotedthrough the staff newsletter and intranet, andpublished on the CCG website.Training implications:All staff should be made aware of where to findCCG policies at induction.Resource implicationsThere are no resource implications in relationto this policy.Further details and additionalcopies available from:Website:Equality analysis completed?CSU equality impact assessment frameworkused to evaluate policy. EIA template appendedto policy.Consultation processCSU IT Senior Leadership TeamCSU Corporate Governance Assurance GroupCCG Policy Sub GroupApproved by:Policy Sub GroupDate approved:11 September 2019Asset Management Policy COR/059/V1.1Version 1.1September -and-security-policies/2
Website Upload:WebsiteLocation in FOIPublication umenttag/ig-and-security-policies/Insert helpful keywords (metadata) that will be used to search for thisdocument on the intranet and websiteAmendments Summary:Amend IssuedPage(s)No12345SubjectAction DateReview Log:Include details of when the document was last reviewed:VersionNumber1.1ReviewDateSept 19ReviewerRatification ProcessNotesSCW CSUCyberSecurityManagerSCW CSU IT SeniorLeadership Team, IGSteering Group andCorporate GovernanceAssurance Group.CCG Policy Sub Group.Full review. Noamendments tocontent apart fromchanging regularreview period fromannual to biennial.Asset Management Policy COR/059/V1.1Version 1.1September 20193
ASSET MANAGEMENT POLICYAs the South, Central & West Commissioning Support Unit (CSU) provides ITnetworks, equipment and support to West Hampshire CCG, all CCG employees arerequired to adhere to the CSU IT Services core information security policies, inaddition to those of the CCG.The following policy was developed by the CSU IT Services Team and was adoptedfor use by the CCG. This has been identified as an IT Core Policy and as suchcannot be amended by the CCG.SUMMARY OF KEY POINTS TO NOTEThis policy provides the framework for the SCW IT Services Asset ManagementProcess, which must be followed by all SCW staff and external suppliers whenmanaging assets on behalf of customers.This policy supports management of hardware and software. Hardware and softwareclasses listed below include but are not limited to: Personal Computers: desktop, laptop, notebook Mobile devices: tablets, mobile phones Monitors Printers, label writers and scanners Business systems: conference facilities, projectors, smartboards Network equipment, servers, routers, switches, firewalls, UninterruptiblePower Supply (UPS) Wi-Fi equipment: Wi-Fi Access Points, Wi-Fi controllers Storage Area Network, compute, appliances, network equipment.Software assets supported by SCW: End User: for example, business, communication and specialist applications Local and Core Infrastructure: for example, Operating System, virtualisation,databases, threat detection Software is further categorised by publisher, software title, version, licencetype.Asset Management Policy COR/059/V1.1Version 1.1September 20194
OFFICIALIT Asset Management PolicyVersion 1.1NHS South, Central and WestCommissioning Support UnitAugust 2019South, Central and West
DOCUMENT CONTROLDocument NameVersionStatusAuthorIT Asset Management Policy1.1FinalHead of ServiceDevelopment & SupportDocument objectives:This document defines the Policy for planning andmanaging assets across the lifecycle.Target audience:The Policy provides the framework for the SCW IT ServicesAsset Management Process; which must be followed byall SCW staff and external suppliers when managing assetson behalf of customers.Committee/Group Consulted:SCW IT Services Senior Leadership TeamMonitoring arrangements andindicators:The effectiveness of the Policy in meeting its aims andobjectives will be kept under review and reportssubmitted as required to the SCW IT Services SeniorLeadership Team.Training/resource implications:Training in, and assistance in adhering to, the Policy willbe provided by the Asset Management Team.Approved and ratified by:SCW InformationGovernance Steering GroupSCW Corporate GovernanceAssurance GroupDate: 19/08/2019Equality Impact Assessment:Yes23 July 2018Date issued:19/08/2019Review date:July 2021Author:Stephanie Wilson, Head of Service Development andSupportLead Director:Simon Sturgeon, Director of IT ServicesVersion Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 2
Version ControlChange RecordDateAuthorVersionPageReason for Change22-Jul-18StephanieWilson0.123-Jul-18Cathy Jukes 0.2SLT Review24-Jul-18StephanieWilson1.0Version change following CGAGapproval and ratification21/06/2019 Arif Gulzar1.1AllPolicy reviewed and signed off by ITsenior leadership team12/07/2019 Arif Gulzar1.1AllPolicy approved by IG Steering Group19/08/2019 Arif Gulzar1.1AllPolicy ratified by SCW CorporateGovernance Assurance GroupFirst draft versionReviewers/contributorsNamePositionVersion Reviewed& DateDavid WalchHead of IT Service DeliveryV1.1 21/06/2019Andy FerrariAssociate Director of IT Strategy and Planning V1.1 21/06/2019Michael KnightAssociate Director of TechnologyManagement & ArchitectureV1.1 21/06/2019Stephanie WilsonHead of IT Services Development & SupportV1.1 21/06/2019Cathy JukesAssociate Director of IT Led Programmes &Portfolio ManagementV1.1 21/06/2019Simon SturgeonDirector of IT ServicesV1.1 21/06/2019Version Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 3
CONTENTS1.INTRODUCTION . 52.SCOPE AND DEFINITIONS. 53.DETAILS OF THE POLICY . 64.OBJECTIVES . 75.ROLES AND RESPONSIBILITIES . 86.TRAINING . 97.MONITORING COMPLIANCE AND EFFECTIVENESS. 98.REVIEW . 99.REFERENCES AND ASSOCIATED DOCUMENTS. 9APPENDIX A - ASSET LIFE CYCLE PROCESSES . 11APPENDIX B - EQUALITY IMPACT ANALYSIS. 12Version Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 4
1.INTRODUCTIONThe Asset Management Policy describes the aims and objectives of assetmanagement. This policy draws from IT industry best practice using the ITILframework, IT Asset Management (ITAM), the ISO Asset Management System ISO55001, Controls Objectives in IT (COBIT 5), PRINCE 2.This asset management policy provides the framework for the care and controlof IT assets through their life cycle. The 5 life cycle phases cover acquisition,deployment, operation and maintenance through to decommissioning(retirement) and disposal of assets.The primary purposes of asset management are to: Support delivery of IT services in line with customers’ business plans Provide transparency of IT costs, benefits and risks Support optimisation of IT assets, resources and capabilitiesThe secondary purposes of asset management are to: Ensure IT compliance with internal policies Ensure IT compliance with standards, legal and regulatory obligations Manage IT-related business risk Support IT agility Ensure security of information, processing infrastructure and applications Ensure availability of reliable performance management information2.SCOPE AND DEFINITIONSScopeThe objective of the Asset Management Policy is to define a coherent set ofprinciples, policy statements, processes, standards and architectures that: Describe how IT assets are managedProvide high level policy statements on the requirements for managing assets Identify key standards, processes and procedures which support the policyDefine the roles and responsibilities for implementing this policyDefine technical solutions that support the delivery of the asset managementpolicyVersion Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 5
This policy applies to all customers, and staff of NHS South, Central and WestCSU, and all appointed 3rd party suppliers.IT hardware and software assets fall the within scope of the IT AssetManagement Policy (and where management of these is included withincustomer support agreements). It excludes Information Assets.DefinitionsISO 55000 defines asset management as “the coordinated activity of anorganisation to realise value from assets” where an asset is an “item, thing orentity that has potential or actual value to an organisation”.This policy supports management of hardware and software. Hardware andSoftware classes listed below include but are not limited to: Personal Computers: desktop, laptop, notebook Mobile devices: tablets, mobile phones Monitors Printers, label writers and scanners Business systems: conference facilities, projectors, smartboards Network equipment, servers, routers, switches, firewalls, UninterruptiblePower Supply (UPS) Wi-Fi equipment: Wi-Fi Access Points, Wi-Fi controllers Storage Area Network, compute, appliances, network equipmentSoftware assets supported by SCW: End User: for example, business, communication and specialist applications Local and Core Infrastructure: for example, Operating System, virtualisation,databases, threat detection Software is further categorised by publisher, software title, version, licencetype3.DETAILS OF THE POLICYSCW provides Asset Lifecycle Management as defined within ITIL/ ITAM bestpractice. The 5 key Lifecycle Processes are: Receive, Deploy, Maintain, Retire,Version Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 6
Dispose assets (see Appendix A for further detail). These processes aremanaged in accordance with best practice or as agreed with the customerorganisation.An Asset Repository is maintained and used to record status of all assetsthroughout the lifecycle.Technology tools are used in combination with data integration methods andprocesses to provide management information. Tools include an AssetManagement Tool, databases, barcode scanners. Asset data is integrated withthe Service Management Tool to support operational service delivery.Established processes capture asset maintenance and renewal details, supportedby details of how purchased, vendor or supplier from whom acquired,maintenance and support agreements, start and end dates.4.OBJECTIVESApplication of the policy will ensure adherence to the following principles andobjectives: Hardware and software assets will be managed in accordance with laws,Standing Financial Instructions, agreed standards, policies, processes,procedures, 3rd party and customer Service Level Agreements Critical core and local infrastructure is maintained and supported inaccordance with manufacturers and suppliers warranted terms IT assets are operated in accordance with manufacturers’ warranties inorder to maximise return on investment, with agreement of customersand support of vendors and manufacturersIT assets will be managed in accordance with supplier, 3rd party and customer agreements This policy will be operated alongside other asset standards and referencedocuments including:-Naming standards and hardware asset management labellingconventions-Supported hardware and software standards as agreed withcustomers and suppliersVersion Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 7
-Vendors and manufacturers contracts and warranties-IT Disposal PolicySoftware is managed in accordance with legal obligations relating to:-Software publishers’ terms and conditions-Software entitlements-Customers are advised of their responsibilities and options forachieving compliance Proactively seek Continuous Service Improvement of our assetmanagement capabilities and activities and assure value for money forcustomers and stakeholders5.ROLES AND RESPONSIBILITIESSCW IT Services are responsible for care and control of in scope assets inaccordance with this policy.Key StakeholderResponsibilityCustomersResponsible for planning and securing investmentin assets in accordance with own business plansResponsible for assets in their careConsulted/ InformedSCW ExecutiveManagement TeamAccountable for approval of asset managementpolicyAccountable for approval of IT Services BusinessPlan and associated Business CasesDirector of IT ServicesAccountable for operating in accordance with policyITS Senior LeadershipTeamResponsible for operating in accordance with policyResponsible for communicating policy to staffHead of ServiceDevelopment andSupportResponsible for authoring and maintenance ofpolicyResponsible for assurance, lifecycle activities.Responsible for preparing business cases forinvestment in people resources, technical tools, anddata management.Asset and ConfigurationResponsible for operating in accordance withVersion Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 8
6.Manageragreed asset management processes and otherrelated IT processes.Associate Director ofTechnical Managementand ArchitectureResponsible for management of core ITinfrastructure in accordance with policyHead of Service DeliveryResponsible for operational service delivery inaccordance with policy3rd Party SuppliersResponsible for operating in accordance with policyResponsible for compliance with linked policies, forexample the Disposal PolicyInformedIT Services staffResponsible for operating in accordance with policyCyber Security ManagerConsultedInformation GovernanceConsultedTRAININGThe Asset Management Team will ensure training opportunities are provided inthe use of the technical tools (Asset Management Tool) and application of thispolicy and underpinning processes, procedures and standards.7.MONITORING COMPLIANCE AND EFFECTIVENESSThe Head of Service Development & Support is responsible for monitoringcompliance with this policy.Compliance with the policy will be measured through the availability of accurate,complete, timely and relevant asset information to support operationalprocesses and decision making. Information will be recorded and maintained inthe Asset Repository and within Service Management and Asset ManagementTools. Gaps in the available information will be remediated with an agreed planof action.8.REVIEWThe policy will be reviewed at least biennially by IT Services Senior LeadershipTeam.9.REFERENCES AND ASSOCIATED DOCUMENTSLegislation Health and Safety at Work Act, 1974 General Data Protection Regulations Act, 2018Version Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 9
Copyright Designs and Patents Act, 1988 Waste Electrical and Electronic Equipment (WEEE) Directive ( 2002/96/EC and2003/108/EC)Policies Standing Financial Instructions, Capital Accounting Policies (NHS England)Guidance on the security and management of NHS assets (NHS Protect) Risk Management PolicyGuidance NHS Codes of Practice in relation to Information Governance and bestpractice guidance (Department of Health) Excellence in GP IT (NHS England) Hardware and Software Security Good Practice Guide; Sanitisation, Reuse,Disposal and Destruction Good Practice Guide; Asset Management GoodPractice Guide, (NHS Digital) 10 Steps to Cyber Security, National Cyber Security cure-configuration.Version Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 10
APPENDIX A - ASSET LIFE CYCLE PROCESSESVersion Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 11
APPENDIX B - EQUALITY IMPACT ANALYSISEquality Impact Analysis on the Asset Management Policy1 What is it about?Refer to the Equality Act 2010a) Describe the proposal/policy and the outcomes/benefits you are hoping to achieveThe Asset Management Policy describes the aims and objectives of IT asset management andprovides the framework for care and control of IT assets through their life cycle.b) Who is it for?All staffc) How will the proposal/policy meet the equality duties?No impactd) What are the barriers to meeting this potential?There are no barriers.2 Who is using it?Consider all equality groupsa) Describe the current/proposed beneficiaries and include an equality profile if possibleThe policy is applicable to all.b) How have you/can you involve your patients/service users in developing theproposal/policy?Patients and service users have not been involved in developing the policy as this is anoperational policy.c) Who is missing? Do you need to fill any gaps in your data?There are no gaps.3 ImpactgroupsConsider how it affects different dimensions of equality and equalityUsing the information from steps 1 & 2 above:a) Does (or could) the proposal/policy create an adverse impact for some groups orindividuals? Is it clear what this is?It is not anticipated that any adverse impact will be created.b) What can be done to change this impact? If it can’t be changed, how can this impact bemitigated or justified?This is not applicable.c) Does (or could) the proposal/policy create a benefit for a particular group? Is it clear whatthis is? Can you maximise the benefits for other disadvantaged groups?This policy is equal across all groups.Version Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 12
d) Is further consultation needed? How will the assumptions made in this analysis be tested?No.4 So what (outcome of this EIA)?processLink to the business planninga) What changes have you made in the course of this EIA?None.b) What will you do now and what will be included in future planning?Not applicable.c) When will this EIA be reviewed?At policy review.d) How will success be measured?No equality issues are created.Sign-offDate completed:24-07-2018Name of person leading this EIA:Stephanie WilsonProposed EIA review date:01-07-2019Signature of director/decision-makerSimon Sturgeon, Director of IT ServicesName of director/decision-makerSimon Sturgeon, Director of IT ServicesDate signed24-07-2018End of Policy DocumentVersion Number: 1.1Status: FinalSouth, Central and WestIssue/approval date: 19/08/2019Next review date: July 2021Page 13
This asset management policy provides the framework for the care and control of IT assets through their life cycle. The 5 life cycle phases cover acquisition, deployment, operation and maintenance through to decommissioning (retirement) and disposal of assets. The primary purposes of asset management are to: Support delivery of IT services in line with customers’ business plans .
Management Structure of NBF NBF's asset management is entrusted to the asset management company. The asset management company conducts asset management of NBF based on the Asset Management Entrustment Agreement concluded with NBF. (i) Organizational Structure for Operation of Duties of the Asset Management Company
Asset Keeper Pro - Fixed Asset Cycle Asset Keeper Pro - Fixed Asset Cycle Page 5. Fixed Asset Cycle: Building your own Fixed Asset Cycle If you would prefer to add your own steps to the Fixed Asset Cycle because you are unsure of the procedure that you currently use, you can use the Add Step button. This provides a very quick method
asset management (AM) building blocks that underpin a well-governed asset management system: An asset management policy An asset management strategy, including a framework An asset management governance structure These AM building blocks help strengthen infrastructure planning and
NH SAS 2018–2019 Technical Report: Volume 6 Score Interpretation Guide 1 New Hampshire Department of Education 1. NEW HAMPSHIRE SCORE REPORTS In spring 2019, the following New Hampshire Statewide Assessment System (NH SAS) tests were administered to New Hampshire stu
Once printed this document is considered an uncontrolled version. For the official, current version refer to the UC Policy Library. Figure 2: Asset Management Planning integrated into the University's Planning Framework Asset Management Policy University Vision Asset Management Strategies Asset Management Plans 5-30 years (Buildings .
Use and Maintenance of asset risk information Legal and other requirements Audit Corrective and Preventative Action Continual Improvement Records Management Review 1.6 General Requirements Asset Management Policy Asset Management Strategy Asset Management Objectives Asset Managemen
A Practical Guide to SAP . 9.1 Introduction to asset accounting 181 9.2 Structure and methodolgy 183 9.3 Different methods of asset acquisition 184 9.4 Asset master record 185 9.5 Asset acquisitions 190 9.6 Retirements with customer 199 9.7 Asset value adjustments 202 9.8 Reverse asset posting 207 9.9 Asset transfers 208 9.10 Depreciation and closing tasks 211 9.11 Asset drill down and .
HP Asset Manager Financial Management module Align asset investments for improved business value. HP Asset Manager Financial Management captures, monitors and manages all costs associated with an asset, from acquisition through retirement. HP Asset Manager Financial Management makes it easy to track costs associated with every asset at every stage
