> I am writing a policy on software licensing and need help with roles
> and responsbilities to be included in such a policy.
Hi Khaya,
I would suggest:
- widening the policy to cover "protection of Intellectual Property Rights"
(of which software licensing is just a part)
- identifying the nominal rĂ´le of IPR Manager: someone should be accountable
to management for ensuring that IPR belonging to the organization and to
third parties is adequately protected through appopriate controls e.g.
contracts, licenses, access controls, compliance
- allocating associated key responsibilities to employees, managers,
Procurement, IT, Legal, Internal Audit, Finance etc. ... More below
- one of the responsibilities should be for someone or some function
(perhaps IT or Finance?) to maintain a register of IPR, acting as a central
clearing house for software licenses etc.
- compliance responsibilities should include periodically reviewing/auditing
and reconciling software installed and in use against the license on the IPR
register
- if you supply your IPR to third parties, you should determine what if any
controls and compliance activities would be appropriate
- dept heads, or really managers in general, should be responsible for
overseeing their staff and raising awareness of IPR policies and controls
where necessary
Kind regards,
Gary
--~--~---------~--~----~------
You received this message because you are subscribed to the Google Groups "ISO 27001 security" group.
To post to this group, send email to iso27001security@googlegroups.
To unsubscribe from this group, send email to iso27001security-unsubscribe@
For more options, visit http://groups.google.com/
-~----------~----~----~----~--
 Reply | Forward |
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
Posts
)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
.jpg)
No comments:
Post a Comment