Post on 25-Jan-2016
description
transcript
WS1 - IP Address Management
1.01 * 4/30/2015
1.02 * 4/30/2015
1.03
1.04
1.05
1.06 * 4/30/2015
1.07 Are you in implementing?
1.08 Are you testing?
1.09 Is the project complete?
1.10 * 4/30/2015
1.11
WS1 - AD Migration (TBD)
2.01 * 5/29/2015
2.02 * 5/29/2015
2.03
2.04
2.05
2.06 Do you have a budget
Reference Document
Central IT Critical Item
(*)
Critical Date for Central IT
Do you have a complete and accurate list of all your existing network IP Addresses?
IP Address Inventory
Have you reviewed the IP Address scheme that has been provided for your company by the IT Consultants (see attached reference doc)?
IP Address Allocation
Have all "Hardcoded" IP Addresses/ and IP Address conflicts been resolved or have a possible solution?Have you communicated to IT Consultants/IaaS regarding your decisions, plans and concerns?Do you have the necessary resources to complete the project?
Do you have a project plan for this with aligned dates to the RBC3 move?
Please attach your IP Address inventory file (please save your updated file in google drive and share)?
Remarks: If any of the above is a "no" or "?" please specify ?
Do you have a complete and accurate list of your Active Directory users and dataHave you reviewed the AD plans that has been provided for your company
AD Migration Plan (c/o DA)
Have all AD issues or conflicts been resolved or have a possible resolutionHave you communicated to IT Consultants/IaaS/Accenture regarding your decisions, plans and concerns
Do you have the necessary resources to complete the project
2.07 Do you have management's approval
2.08
2.09
2.10 * 5/29/2015
2.11 Are you in implementing
2.12 Are you testing
2.13 Is the project complete
2.14
WS1 - Firewall for Remote Sites to RBC3
3.01 * 6/1/2015
3.02
3.03
3.04
3.05 Do you have an approved budget
3.06 Do you have management's approval
Do you have a Scope Of Work in place
Are your contracting/procurement docs signed
Do you have a project plan with aligned dates to the RBC3 move?
Remarks: If any of the above is a "no" or "?" please specify
Do you have a complete and accurate information on your existing firewall systems
Firewall Recommendation
Have you reviewed the firewall requirements for remote sites to connect to RBC3Have you communicated to IT Consultants/IaaS regarding your decisions, plans and concerns
Do you have the necessary resources to complete the project
3.07 Do you have a SOW in place
3.08
3.09 * 6/1/2015
3.10 Are you in implementing3.11 Are you testing3.12 Is the project complete
3.13
3.14
WS1 - Stand Alone Printers
4.01 * 5/15/2015
4.02 * 5/15/2015
4.03
4.04
4.05
4.06
4.07 * 5/15/2015
4.08 * 5/15/2015
4.09
WS1 - Existing IT Equipment 6/30/2015
5.01 * 6/30/2015
5.02 * 6/30/2015
5.03 * 6/30/2015
5.04 * 6/30/2015
Are your contracting/procurement docs signed Do you have a project plan with aligned dates to the RBC3 move?
Please attach IaaS Firewall Connectivity Certification
Remarks: If any of the above is a "no" or "?" please specify
Do you have a complete and accurate information on all your standalone printers that will be moved to RBC3Have you reviewed the floor plans where these printers will be placed. (Please check and verify with your HR)
3-26-15 Floor Plans (PDF)
Have you informed your HR/Management/Users where these printers will be locatedAre you capable to support all of your standalone printersFor those with Management Printing Services: Have you reviewed your pre-Termination contract and Penalties (if any)Do you have a project plan with aligned dates to the RBC3 move?
Please attach Floor Plan with location of stand alone printers
Please attach signed conforme of your company executives on the AUP and AUP Exemption forms
Remarks: If any of the above is a "no" or "?" please specify
Pls insert your file here and label as AUPExempt ## (exemption) ex AUPExempt01(Printer)
Have you planned on relocation/redeployment/disposition of your Equipment Cabinets/RacksHave you planned on relocation/redeployment/disposition of your LAN & WAN EquipmentHave you planned on relocation/redeployment/disposition of your Security EquipmentHave you planned on relocation/redeployment/disposition of your Servers (not relocated in RBC3)
5.05 * 6/30/2015
5.06 * 6/30/2015
5.07 * 6/30/2015
5.08 * 6/30/2015
5.09 * 6/30/2015
5.10 * 6/30/2015
5.11 * 6/30/2015
5.12 * 6/30/2015
5.13 * 6/30/2015
5.14
5.15
WS2 - Transfer of OCC Data Center
6.01 DC Plan * 3/30/2015
6.02 * 5/22/2015
6.03
6.04
6.05
6.06 Do you have a budget
6.07 Do you have management's approval6.08 Do you have a SOW in place
Have you planned on relocation/redeployment/disposition of your non-branded/old/defective desktops and laptops
Have you planned on relocation/redeployment/disposition of your PBX (IP or Digital) EquipmentHave you planned on relocation/redeployment IP Phones (Cisco)Have you planned on relocation/redeployment/disposition IP Phones (Non-Cisco)Have you planned on relocation/redeployment Analog & Digital phonesHave you planned on relocation/redeployment/disposition Fax MachinesHave you planned on relocation/redeployment/disposition Access PointsHave you planned on relocation/redeployment/disposition Tape Drives, CDs, Manuals Have you planned on relocation/redeployment/disposition Other IT Equipments, cables, defective devices and partsHave you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
Do you have a complete and accurate list of all your servers that will be transferred to the new DC
Have you reviewed the Server Migration plan that has been provided for your companyHave all Server issues or conflicts been resolved or have a possible resolutionHave you communicated to IT Consultants/IaaS regarding your decisions, plans and concerns
Do you have the necessary resources to complete the project
6.09
6.10 * 6/15//2015
6.11 Are you in implementing6.12 Are you testing6.13 Is the project complete6.14 Please attach IaaS acceptance Doc
6.15
WS3 - Telco (Internet)
7.01
7.02
7.03
7.04 * 6/15//2015
7.05
WS3 - Telco (E1)
8.01
8.02
8.03
8.04 * 6/15//2015
8.05
WS3 - Telco (Direct Lines) not to be transferred
9.01
9.02
9.03
Are your contracting/procurement docs signed
Do you have a project plan with aligned dates to the RBC3 move?
Remarks: If any of the above is a "no" or "?" please specify
Have you started your circuit termination discussion with all your Telco providersHave you negotiated your penalty clause if anyFor with Penalty Clause: Have you an approved budgetHave you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
Have you started your circuit termination discussion with all your Telco providersHave you negotiated your penalty clause if anyFor with Penalty Clause: Have you an approved budgetHave you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
Have you started your circuit termination discussion with all your Telco providersHave you negotiated your penalty clause if anyFor with Penalty Clause: Have you an approved budget
9.04 * 6/15//2015
9.05
WS3 - Telco (Direct Lines) transfer to RBC3
10.01
10.02 * 5/29/2015
10.03
10.04 Do you have a budget10.05 Do you have management's approval
10.06 * 4/30/2015
10.07
10.08 * 6/15//2015
10.09 Are you in implementing10.10 Are you testing10.11 Is the project complete
10.12
10.13
10.14
WS3 - Telco (CATV)
11.01
11.02
11.03 * 4/30/2015
11.04 * 6/15//2015
11.05
WS3 - Connectivity - Migration to MPLS of sites
12.01
Have you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
Do you have a complete and accurate information on all your existing Direct Lines and Contracts
Direct Line Configuration
Have you filled out and completed the Exemption Waiver Form (Telco)Have you started your circuit redirect discussion with all your Telco providers
Please identify location of the Direct Lines on the floors planAre your contracting/procurement docs signed Do you have a project plan with aligned dates to the RBC3 move?
Please attach Telco certificate of completionHave you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
Have you started your cable service provider relocation to RBC3Have you negotiated your penalty clause if you are terminating Have you identified location of your executives, special users the location on the floor planHave you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
Do you have a complete and accurate list of your MPLS sites that will be connected to RBC3
MPLS Telco Plan
12.02
12.03
12.04
12.05
12.06 Do you have an approved budget12.07 Do you have management's approval12.08 Do you have a SOW in place
12.09
12.10 * 6/15//2015
12.11 Are you in implementing12.12 Are you testing12.13 Is the project complete
12.14
12.15
WS4 - Legacy Mail Server
13.01
13.02
13.03
13.04
13.05
13.06
13.07 * 6/15//2015
13.08
WS5 - Review of RBC3 Acceptable Use Policy
Have you reviewed the Telco plans that has been provided for your companyHave all MPLES/Telco issues or conflicts been resolved or have a possible resolutionHave you discussed with the the Telcos your MPLS plans and concernsHave you communicated to IT Consultants/IaaS regarding your decisions, plans and concerns
Are your contracting/procurement docs signed
Do you have a project plan with aligned dates to the RBC3 move?
Please attach your MPLS Contract summary
If any of the above is a "no" or "?" please specify
Have you planned on decommissioning your Legacy Mail ServerAre there applications still integrated to your legacy Mail ServersHave you migrated important email/data of your critical users/executives to the Gmail systemFor those requiring historical email data, have you planned on a local offline copy on their PCWill there be any business impact if legacy mail server are decommissioned before the RBC move?Have you communicated to IT Consultants/IaaS regarding your decisions, plans and concernsHave you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
14.01
14.02
14.03
14.04
14.05 Do you have management's approval14.06 Do you have a SOW in place
14.07 * 6/15//2015
14.08 Are you in implementing14.09 Are you testing14.10 Is the project complete
14.11
14.12
WS5 - Shared Services Guidelines
15.01
15.02
15.03
15.04
15.05
15.06
Do you have the latest Acceptable Use Policy
Acceptable Use Policy Doc
Have you reviewed the document and see no problems implementing itHave you reviewed the technical requirements to implement the Acceptable Use Policy in your end-point devices
Have you discussed with management the impact to non-compliance as well as Exceptions Form
AUP Exemption Form
Pls insert your file here and label as AUPExempt ## (exemption) ex AUPExempt01(Macintosh)
Do you have a project plan with aligned dates to the RBC3 move?
Please attach signed conforme of your company executives on the AUP and AUP Exemption forms
If any of the above is a "no" or "?" please specify
Do you agree and comply : Every employee should be mindful of the "Information Classification" when sharing company information.
Do you agree and comply : Only authorized devices will be allowed to connect to the company network. Visitors will be provided guest connectivity to the internet.
Do you agree and comply : Jail-broken devices will not be allowed to connect to the network
Do you agree and comply : Native e-mail access on personal devices requires a wipe waiver to automatically wipe information once the hardware is compromised.
Do you agree and comply : End-user devices should have end-point security software installed. Only official licensed software may be installed on end-user devices.
Do you agree and comply : The use of non-company, non-cloud storage is highly discouraged.
15.07
15.08
15.09
15.10 * 5/15/2015
15.11
WS5 - Upgrading of OS to Windows 7
16.01
16.02
16.03
16.04
16.05 Do you have a budget16.06 Do you have management's approval
16.07 * 6/15//2015
16.08 * 6/15//2015
16.09 Are you in implementing16.10 Are you testing16.11 Is the project complete
16.12 * 8/14//2015
16.13
WS5 - Upgrading to Branded Laptops/Desktop
17.01
17.02
17.03
Do you agree and comply : Social Networking is not permitted unless officially authorized.
Do you agree and comply : Video-streaming websites are not permitted unless officially authorized. Pornographic, malicious and torrent-related websites will be blocked by the company.
Do you agree and comply : Every laptop and desktop must be from a branded manufacturer and have at least the following:- Anti-virus protection- Minimum OS version of windows 7- Macs will be on an exception basis
Have you filed your Acceptable Use Policy Waiver Forms
AUP Exemption Form
Remarks: If any of the above is a "no" or "?" please specify
Pls insert your file here and label as AUPExempt ## (exemption) ex AUPExempt01(Macintosh)
Do you have a complete and accurate list of your Desktops and Laptops OSHave you filled out and completed the Exemption Waiver Form (Below Windows 7)
AUP Exemption Form
Have you reviewed the upgrade path required for your Desktops and LaptopsHave you requested quotes for the OS upgrades
Are your contracting/procurement docs signed Do you have a project plan with aligned dates to the RBC3 move?
Please attach your MS Certificate of Authenticity summary
Remarks: If any of the above is a "no" or "?" please specify
Do you have a complete and accurate list of your Desktops and LaptopsHave you filled out and completed the Exemption Waiver Form (Mac/Unbranded)
AUP Exemption Form
Have you reviewed the allowed Desktops and Laptops brands and have gotten quotes from suppliers
17.04
17.05
17.06 Do you have a budget17.07 Do you have management's approval
17.08 * 6/15//2015
17.09 * 6/15//2015
17.10 Are you in implementing17.11 Are you testing17.12 Is the project complete
17.13 * 8/14//2015
17.14
WS6&7 - Auxilliary Equipment
18.01
18.02
18.03
18.04
18.05
18.06
18.07
18.08
18.09 * 6/15//2015
18.10
WS 6 & 7- Timekeeping
Have you filed the Exception request for apple Macintosh laptops Have you discussed with management the Security Policies with respect to the need to upgrade to branded PCs and Macs
Are your contracting/procurement docs signed Do you have a project plan with aligned dates to the RBC3 move?
Please attach your Supplier's Certificate of Completion
Remarks: If any of the above is a "no" or "?" please specify
Have you planned on relocation/redeployment/disposition of your existing CCTV equipment
Have you planned on relocation/redeployment/disposition of your existing Card Access and Control system
Have you planned on relocation/redeployment/disposition of your existing TVs'Have you planned on relocation/redeployment/disposition of your existing Projector EquipmentHave you planned on relocation/redeployment of your existing videocon equipmentDo you have plans in acquiring Video Con end-points for your offsite connected to MPLSHave you planned on relocation/redeployment/disposition of your existing cable TV equipmentHave you planned on relocation/redeployment/disposition of your existing Radio Comms EquipmentHave you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Remarks: If any of the above is a "no" or "?" please specify
19.01
19.02 * 4/30/2015
19.03
19.04
19.05
19.06 Do you have a budget19.07 Do you have management's approval
19.08 * 4/30/2015
19.09 * 6/15//2015
19.10 * 6/15//2015
19.11 Are you in implementing19.12 Are you testing19.13 Is the project complete
19.14 * 8/14//2015
19.15
19.16
Have you reviewed your existing Timekeeping system that you will/may bring to RBC3Have you reviewed the floor plans to see the location of where you will place your timekeeping device
Have you checked with your existing Timekeeping vendor the requirements for integration/Data collection needed by your system to integrate with the Door Access System in RBC3
Have you discussed with management these detailsDo you have the necessary resources to complete the project
Have you reviewed the floor plan and defined your Time keeping standalone system in itAre your contracting/procurement docs signed Do you have a project plan with aligned dates to the RBC3 move?
Please attach contractors project completion certificate
Have you communicated to IT Consultants/IaaS regarding your decisions, plans and concerns
Remarks: If any of the above is a "no" or "?" please specify
Please attach your updated project plan MS Project 2013
Project Plan Template (MS Project)
Please attach your updated project plan xls (those w/o MS Project)
Project Plan Template (MS Excel)
FPH FGEN FPIP FPIC
FPIC List of IP
seconded assigned
No IP Conflict, PI System (Servers) cannot be replaced
Internal discussion/ planning - based on changes in server IPs communicated last May 08
Of course there should be testing, considering the IP changes to be done
IP address already provided and reflected in the IP Address inventory
Already submitted previously, is this a new requirement?
PI conflict has cost implication
Until RBC Tower 3 move
FPIC will not change current IP
??? No alignment discussion yet with WSOwner.If manpower/ staffing is being asked here, FGen is so far rolling along with the pilot migration
????
100 %
None yet.
Approval of the AD migration? By all means, yes, because we all have to align with the RBC Move. Approval of the budget? Yes, indicative onlyYes, as far as what has been communicated with FGen IT Technical Lead is concerned. But if you mean 'formal, signed-off Scope statement' that is FGen-specific, then none. Scope is only based on overall RBC Move programNo contracting with any party yet that is FGen-specific - as far is this workstream is concerned
Of course there should be testing, considering the changes done, and yet to be done
This project is sponsored by FPH, and test phase is being worked with Accenture
have informed management but have no approval yet; working with Accenture for test phase
Internall, we have a PM and technical lead for this, but the main implementor will be the vendor to be selected. So answer is yes.None yet. But will request for it. Proposals for remote site FWs just came in for our consideration/ evaluation.
c/o Marlon
c/o Jojo Not yet
Yes
Yes
c/o Marlon Already submitted
c/o Jojo In process
YEs to site offices
Yes to site offices
Yes to site offices
MPLS (Phase 2) Project Plan
The FWs are imputed in the MPLS (Phase 2) Project Plan (see link given above)
Prepared PR. This is for approval and then PO
List of FGen Stand-Alone Printers
Already emailed to J Somontina
To be verified with FGen Admin, as they handle Managed Print Services
List has already been provided via link given above
Standalone printers/scanner for Executives, Purchasing and HR, Dot matrix Accounting
Standalone printers/scanner for the President and Comptroller,Plotter for O&M, Dot matrix for HR and Accounting - No final word yet from the Design Team. They produced a lay out 2 weeks ago. Apparently, it didn't reflect the correct manning we submitted.
Retire servers older than 3 yrs
c/o Jojo
Yes Wil bring to RBC
No
No
Yes to Site office
for disposition
for disposition
These are IT/Comm controlled equipment
These are IT/Comm controlled equipment
First Gen's DC Move Worksheet
Workplan/ Migration Plan has not yet been shared by the Work Stream in charge
Yes, we believe so - until we get to see the Migration Workplan and see and discuss the RACI. It depends. For now, yes.
Yes, indicative figures only
???
???
No
No
No
No
No
No
No
No
Yes, but a raw one based on historical implementation approach and some assumptions; Alignment with overal Migration Plan yet to be done
Critical is the WSO training for the supplier. Will do the walk though of transfer sched on 7 Aug 2015.
Yes - mostly with Bayantel
Telco-intenet contract is beyond holding period (Bayantel and PLDT)
Yes - with Bayantel and PLDT
We do not have E1's. Our phones are analog. Updated 15 May 2015
???
Provision needed for e
FGen List of Analog Direct LinesHave yet to verify with some users in the list above (link given) if they still need these to be transferred to RBC. The 'unassigned' will most likely be terminated.
This is c/o our HR/GS group (To be coordinated)
FGen List of Analog Direct Lines
Submitted exemption form through JJ
This is c/o Fgen Admin
This is c/o our HR/GS group (To be coordinated)
???
yes
yes
yes
yes
yes
No
no
Only for Bayantel; For PLDT & Globe, it is being progressed, with timing being aligned with RBC MPLSMPLS (Phase 2) Project Plan
Signed MPLS contract to follow (Aleady in FGen IT's Shared Folder)
First Gen's MPLS project still ongoing
MPLS was Up last Jan 2015. Initial discussion with PLDT re: transfer of MPLS to OCC done in Feb and 24 July 2015
Server will be transferred to GPS3.All historical email data are located offline on local PCs. Cut off Sep 2014 (google mail migration)
AUP FPHAUP FGEN AUP FPIP AUP FPIC
With exemptions
With exemptions
With exemptions
With Mac units
For Macs
For submission
For Mac
To comply re: branded desktop requirement incl. licenses
Clone PCs need to be upgraded
These are FGen Admin scope
In coordination with HR/GS and Comm.
Need to integrate existing timekeeping system w RBC3
Need to integrate existing timekeeping system w RBC3
Will bring our own TK device
FPEC Therma FB EDC
FPEC IP Firewall Config
Not moving
To confirm with Trends if Thermaprime will change IP add range from 172.31.201.0/24 to 10.111.0.0/16
We are just waiting for the move in
25 % = 15 computersNo migration will be done. All users will be created to new AD
We will use current resources
fb floor plan
we will use current firewall and connect to RBC thru IP-Sec configuration
for co-location at Bayantel
FPEC Printer location & Accounting Workgroup Server
Dot matrix printer for check voucher printing and workgroup server for accounting system (2 users access)
Need to check the floor plan for identifying no. of printers needed for Thermaprime's operation.
these will be relocated to off-site branch
Stand alone server for accounting will be moved to RBC
We will plan for the disposal of these IT equipment and peripherals
All telco contract is out of locking period. Can request service termination month before the transfer
Discussed with AM - Abie last week. Just need the exact date of transfer.
All telco contract is out of locking period. Can request service termination month before the transfer
Provision for TV power/cable provisioning
AUP FPEC AUP Therma AUP FB AUP EDC
Will use whatever is installed
Will bring our own TK device
Need to integrate existing timekeeping system w RBC3
Rockwell Asian Eye
LEGEND
Not moving Not moving
Yes (Completed)
No (Not Started)
In Progress (On Track)
In Progress (Delayed)
Not Applicable
AUP Rockwell AUP AsianEye
Item AUP Shared Guidelines Specific Items
1 Websites
Corporate Website YesStock Websites (PSE) Yes
News Websites Yes
Yes
Bank Sites YesGovernment Sites Yes
Law Sites Yes
2 Social Media
Facebook yes
Twitter No
LinkedIn yes
Pinterest NoGoogle Plus + No
Tumblr No
Instagram No
Flickr NoVine No
Others No
3 Chat
WhatsApp No
Facebook Messenger No
Skype No
Viber No
Google Hangouts Yes 2016
YM No
Others
4 Browsers
Chrome Yes
Safari Yes For mac users
Firefox Yes
IE No
IT Core Decision (Yes/No)
IT Core Approval, with Condition(s)
Allow specific websites to be accessed
Pornographic, terrorist, malicious and torrent-related websites will be blocked.
Trading Websites (OLX, Amazon, Ebay...)
Social Networking is not permitted unless officially authorized.
limited to responding to viewing news feeds
only, posting comments (for
technical validation)
Chat is not permitted unless officially authorized
Google Chrome as standard Browser, other browsers will need to be approved
4 Browsers
TOR Browser No
Opera No
Others
5
Youtube No
Vimeo No
Metacafe No
Torrent No
Others
6 Please specify app No
7
Symantec Yes
Kaspersky No
Sophos No
Bitdefender No
Mcafee Yes
Eset No
No
F-Secure No
Panda No
Google Chrome as standard Browser, other browsers will need to be approved
Video Streaming
Video-streaming websites are not permitted unless officially authorized.
Applications that needs to be installed in
PC
Only official licensed software may be installed on end-user devices. Software installations will be executed by official company IT administrators.
All computers should be locked except for company IT Admin
Endpoint Security
End-user devices should have endpoint security software installed.
Units without anti-virus protection / Outdated or expired antivirus
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated versions
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated versions
Microsoft Security Essential
7
Avast No
Trend Micro Yes
8 Native Email
Ms Outlook NoLotus NoInky No
Windows Email NoMozilla Thunderbird No
Others No
9 Cloud Storage
10 No
11
IOS No
Android No
Windows CE No
Blackberry No
12 Yes
13 Guest Laptops No No access by default
14 No
15 No
Endpoint Security
End-user devices should have endpoint security software installed.
Units without anti-virus protection / Outdated or expired antivirus
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated versions
Native e-mail access on personal devices requires a wipe waiver to automatically wipe information once the hardware is compromised.The use of non-company, non-cloud storage is highly discouraged.
All company information must be stored and backed-up only on the company approved storage
Google drive preferred as standard cloud drive
Apple Macintosh
Macs will be on an exception basis
Tablets & Smartphones
Only company issued end-user devices will be allowed to connect to the company network.
Jail-broken devices will not be allowed to connect to the network
Windows 7 OS & Branded WS
Every laptop and desktop must be from a branded manufacturer and have at least the following:- Anti-virus protection- Minimum OS version of windows 7 Professional
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated
Only authorized devices will be allowed to connect to the company network. Visitors will be provided guest connectivity to the internet.
Windows 8 Service Pack
Only official licensed software may be installed on end-user devices.
Not advised, Not Recommended
Other OS ie. Linux etc
16 No
17 No
18 Plotters No
19 Direct Lines No
20 Fax No
21 Cable TV No
22 Tethering & Wifi No Cisco MSE Adaptive Wireless Intrusion Prevention System (wIPS)
AUP List
Sample Acceptable Use Policy Template. One sheet per event.
External HDD and USB
Use of non-company issued external storage is restricted
Standalone printers
Standalone printers will not be connected to the network (USB only) but will require space & powerPlotter will require space & power
Direct Lines that are not connected to the IP Telephony System and will be handled by each company. Cat6 provision to the Tel Room will be provided by fitout
Faxes that are not connected to the IP Telephony System and will be handled by the company. Cat6 provision to the Tel Room will be provided by fitout
Cable TV provision will be provided in each Executive / VP Room by fitout contractor but will be handled by each company. RG6 Cable provision to the Tel Room will be provided by fitoutTethering and wifi sharing devices will only be allowed for BCP purposes.
FPH FGEN FPIP FPIC
Present Policy Present Policy Present Policy Present Policy
Firewall URL Filtering Allow All Users Allow All Users Allow All Users Allow All UsersFirewall URL Filtering Allow All Allow All Allow All Allow AllFirewall URL Filtering Allow All Allow All Allow All Allow All
Firewall URL Filtering Allow All Allow All Allow All Allow All
Firewall URL Filtering Allow All Allow All Allow All Allow AllFirewall URL Filtering Allow All Allow All Allow All Allow AllFirewall URL Filtering Allow All Allow All Allow All Allow AllFirewall URL Filtering Allow All Allow All Allow All Allow All
Allow All Allow All Allow All MCC, IT
Firewall URL Filtering Allow All Allow All Allow All MCC, IT
Firewall URL Filtering Allow All Allow All Allow All MCC, IT
Firewall URL Filtering Allow All Allow All Allow All MCC, ITFirewall URL Filtering Allow All Allow All Allow All MCC, ITFirewall URL Filtering Allow All Allow All Allow All MCC, IT
Firewall URL Filtering Allow All Allow All Allow All MCC, IT
Firewall URL Filtering Allow All Allow All Allow All MCC, ITFirewall URL Filtering Allow All Allow All Allow All MCC, ITFirewall URL Filtering Allow All Allow All Allow All MCC, IT
Allow All Allow All
Allow All Allow All Allow All MCC, IT
Allow All Allow All Allow All IT
Allow All Allow All
Allow All Allow All Allow All Allow All
Allow All Allow All YM Blocked
Allow All
Allow All Allow All Allow All Allow All
Allow All Allow All Allow All
Allow All Allow All Allow All Allow All
Allow All Allow All Allow All Allow All
Addressed by Technology or Process
Firewall URL Filtering, Applicaiton Visibility and Control (AVC)
Application Visibility and Control (AVC)
Executives, IT, Guest,
consultantsApplication Visibility and Control (AVC)
Application Visibility and Control (AVC),
Network Access Control (NAC)
Application Visibility and Control (AVC).
Network Access Control (NAC)
Executives, IT, Guest,
consultants
Application Visibility and Control (AVC)
Application Visibility and Control (AVC),
Network Access Control (NAC)
Application Visibility and Control (AVC),
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Blocked Blocked Blocked
Allow All Blocked
Blocked Blocked
Firewall URL Filtering Allow All Allow All MCC, IT
Firewall URL Filtering Allow All MCC, IT
Firewall URL Filtering Blocked Blocked Blocked
Blocked Blocked
Blocked Blocked Blocked
MS Project Adobe pdf viewer Adobe pdf viewer
cisco VPN Teamviewer Teamviewer - IT
MS VisioVNC
Symantec altiris
Installed
Installed
Installed
Installed Installed
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Executives, IT, Guest,
consultantsExecutives, IT,
Guest, consultants
Application Visibility and Control (AVC),
Network Access Control (NAC), Firewall
URL Filtering
Executives, IT, Guest,
consultants
Application Visibility and Control (AVC),
Network Access Control (NAC), Firewall
URL Filtering
Network Access Control (NAC)
SAP (HR & Acctg. System)
SAP, Lotus Notes, Acrobat
Reader, MS Office,
ERP-ERIC, Great Plains
ERP-Platinum 4.8a,
middlewares
Network Access Control (NAC)
Docu1/Globodox (Digitization/Archi
ving System)Network Access Control (NAC)
Acrobat Professional
Network Access Control (NAC)
Olympus Recorder (for transcribing)
Network Access Control (NAC)
Legal System (Jurisprudence/L
aws/Taxation, etc.)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
For Archive For ArchiveAllow All For Archive
ProcessProcessProcessProcessProcessProcess
Process
1 - HC + 1
2 - HC, VCM 1 - AMM
Allow All
For Verification
25-Win7-SP2, 25-Win7-SP2,
20-guest laptop 5-guest laptop
NAC 15-Win8.1 1-Win8.1
NAC
Network Access Control (NAC)
Network Access Control (NAC)
Network Access Control (NAC)
3 - FRL, ORL, GCR
Executives, FRL, SCH,VBS, JR, CJF, EPS,APG
Network Access Control (NAC)
Executives & Managers
Executives & Managers
Network Access Control (NAC)
Executives & Managers
Executives & Managers
Network Access Control (NAC)
Executives & Managers
Network Access Control (NAC)
Executives & Managers
Executives & Managers
Network Access Control (NAC)
Recently upgraded OS but Still a number of
Clone PCs
IBM Lenovo - Company issued
Wireless Security, NAC
Guests and Consultants
Guests and Consultants
NAC, AD Group Policy Allow all 10 - 1 TB Various
NAC 21 Printers 13 printers 4 Printers
For Verification
process 6 -For Verification
Process 1 - OPs 1 -For Verification
Process 1 -For Verification
Cisco MSE Adaptive Wireless Intrusion Prevention System (wIPS)No Control No Control No Control No Control
FPH Printers List
FGEN DL List
AUP FPH AUP FGEN AUP FPIP AUP FPIC
Comptrollership, Finance, Legal, Audit, Admin,
HR, CorpComm, Executive Offices
19 - USB HDD, 21 - External
Drives
5 Dot Matrix Printers, AMM
14 DID/NDD w Lock
For Verification with Admin
5 - IAR, AMM, ASR, RRL, ROS
6 - Critical Functions/Operati
ons
For Verification with Admin
6 - Executives, Corp Com, Admin
Gym, FRL, VBS3
FGEN Printers List
FPEC Therma FB EDC Rockwell
Present Policy Present Policy Present Policy Present Policy Present Policy
Allow All Users Allow All Users Allow All UsersAllow All Allow All Allow AllAllow All Allow All Allow All
Allow All Allow All Allow All
Allow All Allow All Allow AllAllow All Allow All Allow AllAllow All Allow All Allow AllAllow All Blocked Limited
Executives
Executives BlockedExecutives Allow All Allow AllExecutives Blocked
Executives Blocked
Executives BlockedExecutives BlockedExecutives Blocked
Executives Blocked Blocked
Executives Blocked Blocked
Executives. IT Allow All
Executives Blocked Blocked
Executives Allow All Allow All
Executives Allow All Blocked
Allow All Allow All Allow All
Allow All Allow All Allow All
Allow All Allow All Allow All
Accounting Allow All Allow All
Executives, HR, IT
Blocked - Allow during Lunch
Executives, HR, Corpcom, IT
Blocked - Allow during Lunch
Executives, HR, Corpcom, IT
Executives, HR, IT
Blocked - per Request
Executives, HR, Corpcom, IT
Executives, HR, Corpcom, IT
Blocked - per Request
Blocked Blocked
Blocked Blocked
Blocked Blocked
Blocked Blocked Blocked
Blocked Blocked Blocked
Blocked Blocked Blocked
Blocked Blocked Blocked
Teamviewer
Adobe pdf viewer Adobe pdf viewer Teamviewer
Teamviewer Sketchup
GIMP ACAD - Selected
Winrar
Installed
Installed
Installed
Executives, HR, IT
Blocked - Allow during Lunch
Executives, HR, Corpcom, IT
ERP-ERIC, Great Plains
ERP - Quicknet (port 8795)
Installed
Installed
Installed For Archive
Doc EstuarInstalled For Archive
2 - RCG, JB
2 - ADG, ACO Executives
2 - ADG, ACO IT
16-Win7-SP2, 65-Win7-SP2, 2-Win7-SP2,
10-guest laptop 5-guest laptop 10-guest laptop
1-Win8.1 For Downgrade 8-Win8.1
Synology Linux
3 - ADG, ACO, JMG, LDT
5 - JCT, FRE, ALS, AAI, XXX
Executives & Managers
15 - HDD 1 - Synology 1 TB
For Verification
1 For Verification
For Verification
For Verification
1 - HR/Admin
No Control No Control No Control
AUP FPEC AUP Therma AUP FB AUP EDC AUP Rockwell
8-Executives, 2-IT
1-Epson FX 2175-Check
Printer
15 + For Verification
1 - HR (Sending only)
3 - FRE, JCT, ALF
Asian Eye
Present Policy
Allow All Allow AllAllow All Allow AllAllow AllAllow AllAllow AllAllow All
AUP AsianEye
Allow All Allow All Selected Allow All Allow AllAllow All Allow All Selected Selected Allow AllAllow All Allow All Selected Allow AllAllow All Allow AllAllow All Allow All
Allow All
Autodesk Digital Ocean
Company AUP Request
FPH
Video Streaming
Endpoint Security
Tablets & Smartphones (question Windows 7 OSWindows 8 Service PackExternal HD and USB
Standalone printers
Exemption access News web sites (local & global), PSE, Lopez Group web sites and FB accounts (Lopez Link etc.), Dropbox -
Access to bank sites, government sites, news sites, search engines, Dropbox -
Allow access to all search engines (google, yahoo, etc), government agencies web sites (PSE, BIR, etc), Law sites, & Universities(U.P. Ateneo , Lawphil etc), Dropbox -
Allow access to all search engines, all government agencies (LGU, DOLE, BIR, PAGASA), Safety, environment related web sites (PCAPI, ASSPI etc), Sulit, Buy and Sell, Ayos Dito, Dropbox -
Allow access to all government agencies, all search engines, FB accounts of other Lopez Group companies (Fgen, Lopez Link), YouTube, LinkedN, Dropbox -
Exemption to access social media site (Facebook, Twitter, Youtube & other related channels) -
Non-Standard Applications that needs to be installed in PC
Allow the Use of Mac desktop computers for the following offices:
FPH
Standalone printers
Direct Lines
Fax Machines
CATV
FPIC
All WEB ACCESS for MCC & IT.
Allow to open ports for external drive.
Allow to have access for video streaming.
FPIC
Allow to install Timekeeping Machine
1 plotter1 scanner
FPEC
Allow use of mac book laptop
IBM stand alone desktop server
Allow use of Internet Explorer browser
Use of USB hard disk
Therma
FB
BIR, SSS, Philhealth, PAGIBIG (other Government sites) & BDO /Epayroll/Mypayroll (for payroll transactions) requires Mozilla Firefox browser.
Retain existing 6 direct line numbers (assigned to officers & Crisis Room)
Computer (Windows XP standalone) with Oil Accounting Software in DOS.Allow to bring two (2) colored laser printer,
Allow access to Facebook, Linkedin, Dropbox, Sendspace, Youtube for Marketing, HR, Executives & IT
Allow access to Skype, RDP, Teamviewer
Allow use of free software GIMP, adobe reader, winrar
Remote connection to Batangas office thru IP-Sec configuration - Already discussed with JosephAllow use of Windows 8.1 operationg system
Use of dot matrix printer Epson FX-2175 132cpi for cheque voucher printingAllow access to Skype, RDP, Teamviewer
Personal iPad and Company issued Samsung Android
Therma
Allow to use Mac book laptop
Printer - HPNetwork Printer for HR group
Plotter - HP Designjet 510
Standalone Printers (8 units)
TV Screens (6 units)
Fax Machine ***** for confirmationCable TV
Timekeeping Machine
FB
Chat, SkypeQuicknetTeam ViewerSophos antivirus
Other OS ie. Linux
Standalone Printers (8 units)
Fax Machines
Cable TV
Biometrics
FGEN
Allow the company provided USB Flash Drives
Policy 10 Apple Macintosh for Executives
Guest Laptops, up to 10 machines for Guest users
Allow the use of the following video-streaming and file-sharing websites for Youtube & Dropbox
FGEN
Fax Machines & Numbers
Direct Lines
Allow the use of the following video-streaming and file-sharing websites for Youtube & Dropbox
Allow the use of the following video-streaming, social media and file-sharing websites for HR Group workstations:-YouTube-Facebook-Twitter-Dropbox
Allow the use of Encrypted USB Flash Drives (with Anti-virus) which are company-provided.
Allow Apple Mac workstations of authorized users to connect to the company network.Allow access to all video streaming, social networking and file sharing websites for Mancom members.
FGEN
Direct Lines
FPIP
Asian Eye
Rockwell
EDC
Business Justification
For research, social media, web update, news circulation
For research, reference, Information and regulatory compliance
Used for research and information gathering and regulatory compliance.
Used for research and information gathering
For internet browsing, video/photo editing, and development of presentation materials
Used for research work, bank rates information, SAP uploads and regulatory compliance
For Research (price research - property,) regulatory compliance, safety & health networking
For HR related research (training, lectures, facilities etc.), for checking applicant's profile and sample work, etc.
For management group (MCC & IT) need for research & technical support.
Needed for research, training, including foreign training w/c hosts locally.
Needed for transfer of files (pictures, heavy files, etc)
Timekeeping/PayrollUsed in by oil accounting
Plotter - for large format printing of designs/plans & TO, etc.Scanner - for Document Management System (volume jobs)
Company assigned laptop
Accounting Software Great Plains for printing cheque and accounting transactions
Access to ERIC ERP application and online leave approval
Company issued laptop. OEM bundled
Accounting requirement in printing bank cheque thru accounting software Great Plains
Company issued storage for data backup
Access to email and google apps
Remote Sites thru RBC (Thermaprime network)
Required by some sites for fast access & other related transactions like BIR EFPS filing/payment .
Delay in receiving and outdoing calls during peak hours due to congestion. Emergency calls might not reach FPIC. Old numbers are in database of crisis team (comprises of stakeholders).
Laser colored printer - (needed for immediate printing of materials like for Board meeting, plans & drawings, other presentation).
Recruitment, big file sharing to consultant and business partners, Youtube - download trainings, best practices and IT troubleshooting,
Remote access for off-site server, remote desktop and chat facility when communicating to consultant or business partners
GIMP - free photo editor installed to Robert; Adobe reader & Winrar for all windows users
BPI Corporate Online approval using cryptokit, RCBC BIR approval, report generation in Great Plains
Remote access for off-site server, remote desktop and chat facility when communicating to consultant or business partners
Note: Personal Laptop
Finance requirement for check printing.For HR use - confidentiality of documentsPlotter - for large format printing of designs/plans & TO, etc.
Printing needs for Managers
Company's Dashboard
For Timekeeping/payroll
For team collaborationFirst Balfour Accounting SoftwareRemote SupportProtection for Viruses and Trojans
Executives are Mac Users and need full internet access
Guest Laptops will be used for temporary Internet Connection.
File server currently on a dedicated desktop has Linux as its OS
Printer for Executives
for Document Transmittal
cable TV for Executives
We use it for time keeping.Youtube - need to research on technology and instructional materials for learning and updating of knowledge and skills.
Dropbox - the groups frequently deals with external contractors and agencies for their projects and exchange files such as designs, documentations and other materials; these files are mostly big files and in their experience, Dropbox is easier to use for them and their external contacts.
Mancom members require access to these sites.
Required for international calls, for external contacts
Youtube - need to research on technology and instructional materials for learning and updating of knowledge and skills.
Dropbox - the groups frequently deals with external contractors and agencies for their projects and exchange files such as designs, documentations and other materials; these files are mostly big files and in their experience, Dropbox is easier to use for them and their external contacts.Youtube - HR Group needs YouTube access to upload and monitor company's Youtube-hosted videos.
Facebook - HR Group maintains the company's HR Facebook account which is used mainly for recruitment and announcements.
Linkedin - HR Group maintains the company's HR Linkedin account which is used mainly for recruitment and announcements.
Twitter - HR Group maintains the company's HR Twitter account which is used for announcements. It has been proven that updates are much faster on Twitter than on other Social Media Websites.
Dropbox - HR group deals with external agencies and shares files like AVP production, publications and other materials. These files are mostly large files and in their experience, Dropbox is easier to use for both them and their external contacts.
Employees who require to transfer files to another device or to bring with them the files when they travel (using a portable storage device) will be provided by the company the encrypted USB Flash Drive with Anti-Virus Software. Being encrypted, files on the flash drive can be accessed only by the user who knows the password to decrypt the files. This addresses the security issue with the data on the flash drive. With the anti-virus software on the device, infection of malwares will be prevented.
Selected Mancom members are used to and comfortable with Apple Mac laptops. Their Apple Mac laptops enable them to navigate through and work with the different applications faster.
Used by the different departments for FAX communication, and outside contacts are familiar with these numbers
Required for international calls, for external contacts
Users / Count Decision (Y/N) Conditional ApprovalDanny Gozo
Ricky CarandangDeedee AgustinesNiña ZialcitaHazel VelascoKevin KisonEmelita d. SabellaMercedita RosaldoFergie SantiagoAbegail CabreraEsmeraldo C. Amistad
Lorraine DychiaoLianne M. Bacorro
Sonia M. RaymundoFarley A. Cuizon
Oscar R. Lopez, Jr.,Ralf D. NabongCeleste ConsibidoJo JuanNelson TorioMarinet LaxamanaArlene SabellaJo Ann De la CruzAnna Karina P. GerochiMila D. FadriKara GandiongcoRoss HamoIlene EstradaFlorian CabudolJehan YusopAyesha A. VolpaneDanny GozoRicky CarandangDeedee AgustinesNiña ZialcitaHazel VelascoKevin KisonAll
All
AllOscar M. LopezOscar R. Lopez, Jr.CorpComm StaffExecutives & ManagersRecently upgradedGuests and ConsultantsAll
OMLopez
Agnes Le. Casabar Oxales
Elsa Maria Pureza E. Silvino
FRLopez
ELIbañezGBPunoESCoSetengDAGozoRACarandangEDSabella
VBSantosAPGerochiORLopezRIMacatangayBKLiboroEMCanlasAgnes De Jesus
OMLopezFRLopezELIbañezGBPunoESCoSetengDAGozoRACarandangEDSabella
VBSantosAPGerochiORLopezRIMacatangayBKLiboroEMCanlasAgnes De Jesus
MAWienekeSCMiguel
Ana Maria S. Del RosarioIT Team (3 members)
Anthony M. Mabasa Ana Maria S. Del Rosario
Anthony M. MabasaIreneo A. Raule Jr.Ana Maria S. Del Rosario
Rafael O. SantosMarivic F. MiniozaAnthony C. Cepillo
New Group Head Comptroller
New Group Head Comptroller
Anthony M. Mabasa
MCC group (13 members)
MCC group (w/ 13 members) Other assigned to projects (for non-MCC froup)
Robert Vincent R. Ledesma
All Employees
Anthony M. Mabasa Ireneo A. Raule, Jr.Ana Maria S. Del Rosario
Rafael O. SantosCrisis Room c/o Admin
Ma. Celeste M. Tan
PresidentComptroller
Robert IsonTrinidad BinuaJen GarciaArt De GuiaOddie MadatuAriel OngDerick DegayLuis TrinidadRommel Bolus
Art de Guia Ariel OngLuis TrinidadJen GarciaRobert Ison
Rita Capucao Judy NaragMANCOMRobert Ison
Trinidad Binua
Rita Capucao Judy Narag
Rita Capucao Judy Narag Robert Ison
MANCOM
Robert Ison
Art De Guia Ariel Ong
Remote Site Users
Robert Vincent R. Ledesma
Romerico C. Gonzales
Lea Navia Alfredo C. SamanAlfredo C. Saman Cecilia F. Uy
Eric J. MontesManuel RoxasJohn M. GozoWilfredo T. CapilMelchor T. MarianoRonald TablanteJoey R. RomeroAlfredo C. SamanAlfredo C. Saman
with HRAdmin
Alfredo C. Saman
AllAllAllAll
Albert Ignacio
10 Guests
AllAlbert Ignacio
Juliet De Castro
Charleen Paraon
AllBDG
Alfonso G. Baena
Condrado M. Abanilla
Jonathan C Tansengco
Anthony Paul De Leon FernandezFlorello Del Rosario Estuar
Anthony Paul De Leon FernandezFlorello Del Rosario EstuarMaria Carmela Lozada Hombrebueno
Maria Carmela Lozada Hombrebueno
Anthony Paul De Leon FernandezFlorello Del Rosario Estuar
HR
Selected users
Mancom
Mancom
Admin Fax 637-8366BDG Telefax 638-4706Central Fax 631-4691
Legal Fax 910-4846OC TelefaxFRL TelefaxMancomCZU 910-0252DHV 635-2755EPS 635-3426
GBP 910-0661Val Dy Sun 638-3023OOCFRL DSLOCC c/o Sarah MateJosette MendozaFRLSCHOther Users
TSD Groups workstations:
ax Machines required with Direct Lines:
Corp Comm Fax 914-5146Finance Telefax 635-2322
Estela Dela Paz 637-3955
Denise Fajardo (Treasury) 638-4705Venie Villanueva (Accounting) 633-1300
Item Specific Items
1 Websites
Yes
Yes
Yes
Yes
AUP Shared Guidelines
IT Core Decision (Yes/No)
Allow specific websites to be accessed
Pornographic, terrorist, malicious and torrent-related websites will be blocked.
Access News web sites (local &
global), PSE, Lopez Group web sites (Lopez Link etc.),
Dropbox -
Access to bank sites
Allow access to all search engines, all
government agencies (LGU,
DOLE, BIR, PAGASA),
Allow access to all search engines (google, yahoo,
etc), government agencies web sites
(PSE, BIR, etc), Law sites, &
Universities(U.P. Ateneo , Lawphil
etc)
1 Websites
Yes
Yes
2
yes
No
3 Chat
Google Hangouts Yes
Allow specific websites to be accessed
Pornographic, terrorist, malicious and torrent-related websites will be blocked.
Allow access to all search engines (google, yahoo,
etc), government agencies web sites
(PSE, BIR, etc), Law sites, &
Universities(U.P. Ateneo , Lawphil
etc)
Safety, environment related web sites (PCAPI, ASSPI etc), Sulit,
Buy and Sell, Ayos Dito, Dropbox -
Social Media
Social Networking is not permitted unless officially authorized.
Exemption to access social
media site (Facebook, Twitter
& Linked In) -
Pinterest, Google Plus +, Tumblr,
Instagram, Flickr, Vine
Chat is not permitted unless officially authorized
3 Chat
Skype, Viber, No
No
4 Browsers
Chrome Yes
Safari YesFirefox Yes
IE No
Chat is not permitted unless officially authorized
Facebook Messenger,
WhatsApp, YM, Teamviewer , RDP
Others
Google Chrome as standard Browser, other browsers will need to be approved
PROSFast. Voice search. No ads. Leading support for HTML 5. Good security. Syncing with drive. Built-in Flash player and PDF reader.
4 Browsers
IE No
Opera NoTOR Browser No
5
Youtube No
Vimeo NoMetacafe NoTorrent No
Others No
6 Please specify app No
Google Chrome as standard Browser, other browsers will need to be approved
PROSFast. Voice search. No ads. Leading support for HTML 5. Good security. Syncing with drive. Built-in Flash player and PDF reader.
Video Streaming
Video-streaming websites are not permitted unless officially authorized.
Applications that needs
to be installed in
PC
Only official licensed software may be installed on end-user devices. Software installations will be executed by official company IT administrators.
7
Symantec Yes
Kaspersky No
Sophos No
Bitdefender No
Mcafee Yes
Eset No
No
F-Secure NoPanda NoAvast No
Trend Micro Yes
8
Ms Outlook NoLotus NoInky No
Windows Email NoMozilla Thunderbird No
Others No
9
Endpoint Security
End-user devices should have endpoint security software installed.
Units without anti-virus protection / Outdated or expired antivirus
Microsoft Security Essential
Native Email
Native e-mail access on personal devices requires a wipe waiver to automatically wipe information once the hardware is compromised.
Cloud Storage
The use of non-company, non-cloud storage is highly discouraged.
All company information must be stored and backed-up only on the company approved storage
Google drive preferred as
standard cloud drive
9
10 No
11
IOS NoAndroid No
Windows CE No
Blackberry No
Cloud Storage
The use of non-company, non-cloud storage is highly discouraged.
All company information must be stored and backed-up only on the company approved storage
Google drive preferred as
standard cloud drive
Apple Macintosh
Macs will be on an exception basis
Tablets & Smartphone
s
Only company issued end-user devices will be allowed to connect to the guest network upon request.
Jail-broken devices will not be allowed to connect to the network
12 Yes
Yes
Windows 8 SPK2 Yes
13 No
15 No
16 No
17 No
Windows 7 Pro
Every laptop and desktop must be from a branded manufacturer and have at least the following:- Approved Anti-virus (latest updated patch) protection- Minimum OS version of windows 7 Professional
Windows 7pro SPK2
Branded WS &
Laptops
Dell, IBM, HP, Lenovo, Asus, Sony
Guest Laptops
Only authorized devices will be allowed to connect to the company network. Visitors will be provided guest connectivity to the internet.
Other OS ie. Linux etc
External HDD and
USB
Use of non-company issued external storage is restricted
Standalone printers
Standalone printers will not be connected to the network (USB only) but will require space & power
17 No
18 Plotters No
19 Direct Lines No
20 Fax Lines No
21 Cable TV No
Standalone printers
Standalone printers will not be connected to the network (USB only) but will require space & power
Plotter will require space & power
Direct Lines that are not connected to the IP Telephony System and will be handled by each company. Cat6 provision to the Tel Room will be provided by fitout
Faxes that are not connected to the IP Telephony System and will be handled by the company. Cat6 provision to the Tel Room will be provided by fitout
Cable TV provision will be provided in each Executive / VP Room by fitout contractor but will be handled by each company. RG6 Cable provision to the Tel Room will be provided by fitout
22 No
23 No
24 Others
Tethering & Wifi
Tethering and wifi sharing devices will only be allowed for BCP purposes.
Time Keeping
Time keeping used for payroll shall be standalone and not connected to network
FPH
Reason Users
Danny GozoRicky CarandangDeedee AgustinesNiña ZialcitaHazel VelascoKevin Kison
Mila D. FadriKara GandiongcoRoss HamoIlene EstradaFlorian CabudolJehan YusopAyesha A. Volpane
Emelita d. SabellaMercedita RosaldoFergie SantiagoAbegail Cabrera
Oscar R. Lopez, Jr.,Ralf D. NabongCeleste Consibido
Jo JuanNelson TorioMarinet LaxamanaArlene Sabella
Jo Ann De la Cruz
Lorraine Dychiao
Lianne M. Bacorro
Sonia M. Raymundo
FPH Business Justification
IT Core Decision
(Y/N)
For research, social media, web update,
news circulation. For HR related research (training, lectures, facilities etc.), for
checking applicant's profile and sample
work, etc.
Anna Karina P. Gerochi
Used for research work, bank rates information, SAP
uploads and regulatory
compliance
For research, reference,
Information and regulatory
compliance
For research, reference,
Information and regulatory
compliance
Esmeraldo C. AmistadAgnes Le. Casabar Oxales
Elsa Maria Pureza E. Silvino
Farley A. Cuizon
Oscar R. Lopez, Jr.,Ralf D. NabongCeleste ConsibidoJo JuanNelson TorioMarinet LaxamanaArlene SabellaJo Ann De la CruzDanny GozoRicky CarandangDeedee AgustinesNiña ZialcitaHazel VelascoKevin Kison
Mila D. FadriKara GandiongcoRoss HamoIlene EstradaFlorian CabudolJehan Yusop
Ayesha A. VolpaneDanny GozoRicky CarandangDeedee AgustinesNiña ZialcitaHazel VelascoKevin Kison
2016 All
For research, reference,
Information and regulatory
compliance
For Research (price research - property,)
regulatory compliance, safety &
health networking
limited to responding to viewing news feeds only, posting comments (for technical validation c/o Joseph)
Used for research and information gathering and
regulatory compliance..
For HR related research (training, lectures, facilities etc.), for checking
applicant's profile and sample work, etc.
Anna Karina P. Gerochi
real risks to using social media, ranging from damaging the
brand to exposing proprietary information.
Social Media thru apps carry malicious software Sometimes hackers go right to the source, injecting malicious code into a
social networking site, including inside advertisements and via
third-party apps
All
All
All
For mac users AllAllAll
The bandwidth rate during a Viber call is approximately 240 KB per minute up and down, 14
MB per hour up and down.
You talk for 1 Minute – 240KB data is consumed
You talk for 1 hour on a call – 14MB data is consumed
real risks to using social media, ranging from damaging the
brand to exposing proprietary information. Social Media thru apps carry malicious software Sometimes hackers go right to the source, injecting malicious code into a social networking
site, including inside advertisements and via third-
party apps
Chrome is designed with security in mind. It has a suite
of security features in place that means that even if attackers find a hole in one layer they
have to bypass other security measures that are in place.
Hackers and cybercriminals are using flaws in Microsoft’s
Internet Explorer to search computers to discover what
kinds of security software they are running and how to take
control of them, security researchers claim.
The exploits are allowing digital reconnaissance to be
performed on a massive scale, across whole companies,
computers, web servers and users without their knowledge, exposing holes in their security
and allowing criminals to intelligently attack vulnerable
machines.
All
AllAllDanny GozoRicky CarandangDeedee AgustinesNiña ZialcitaHazel VelascoKevin KisonAll
All
Hackers and cybercriminals are using flaws in Microsoft’s
Internet Explorer to search computers to discover what
kinds of security software they are running and how to take
control of them, security researchers claim.
The exploits are allowing digital reconnaissance to be
performed on a massive scale, across whole companies,
computers, web servers and users without their knowledge, exposing holes in their security
and allowing criminals to intelligently attack vulnerable
machines.
in case of downloading/watching, the data
would range more or less between this for "1 HOUR" of
VIDEO -
240p ~ 150 MB360p ~ 250 MB480p ~ 400 MB
720p ~ 800-900 MB1080p ~ 1.2 -1.4 GB
Used for research and information
gathering
All computers should be locked except for company IT Admin
For internet browsing, video/photo editing, and development of
presentation materials
No 4
No 5
Not in top quadrant
Not in top quadrantAll Users
Not in top quadrantNot in top quadrantNot in top quadrant
Dropbox, Icloud
All
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated versions
No 1 in Gartner Magic Quadrant
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated versions
No 2 in Gartner Magic Quadrant
Problems with previous Endpoint security
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated versions
No 3 in Gartner Magic Quadrant
integration with other Google services and ease of use. It
boasts a great design, and is accessible to anyone with a
Google account. Google Drive is linked with Google's full suite
of apps, allowing users to create and store documents,
spreadsheets, and Powerpoint presentations.
Google Drive is designed to do two things: create and share
documents, and share files. By default you can create a new
document, presentation, spreadsheet, form or drawing,
and you can also connect third-party apps to add features such as note-taking, mind mapping, diagramming and even interior
design.
Dropbox (popular, 50 million users) is more for personal than enterprise grade drive, security,
frequent downtime, sync issues. integration with google
apps. Icloud for mac integration and sync issues with
Dropbox, Icloud
Oscar M. LopezOscar R. Lopez, Jr.CorpComm Staff
integration with other Google services and ease of use. It
boasts a great design, and is accessible to anyone with a
Google account. Google Drive is linked with Google's full suite
of apps, allowing users to create and store documents,
spreadsheets, and Powerpoint presentations.
Google Drive is designed to do two things: create and share
documents, and share files. By default you can create a new
document, presentation, spreadsheet, form or drawing,
and you can also connect third-party apps to add features such as note-taking, mind mapping, diagramming and even interior
design.
Dropbox (popular, 50 million users) is more for personal than enterprise grade drive, security,
frequent downtime, sync issues. integration with google
apps. Icloud for mac integration and sync issues with
Social Media thru apps carry malicious software Sometimes hackers go right to the source, injecting malicious code into a
social networking site, including inside advertisements and via
third-party apps
Executives & ManagersExecutives & Managers
All
Clone desktops
No access by default
All
OMLopez
FRLopezELIbañez
GBPuno
ESCoSeteng
Forescout NAC will only accept updated versions. Quarantine
will be applied to outdated
For security verification with Joseph
Guests and Consultants
Company issued / encrypted USB
DAGozoRACarandangEDSabella
VBSantosAPGerochiORLopezRIMacatangayBKLiboroEMCanlasAgnes De Jesus
OMLopezFRLopezELIbañezGBPunoESCoSetengDAGozoRACarandangEDSabella
VBSantosAPGerochiORLopezRIMacatangayBKLiboroEMCanlas
Agnes De Jesus
MAWieneke
SCMiguel
OMLopez
New Group Head Comptroller
Company Responsibility (except conduits and wires)
New Group Head Comptroller
Company Responsibility (except conduits and wires)
Company Responsibility (except conduits and wires)
Interference to RBC3 Wifi
RACarandang
Company Responsibility
DAGozo
CorpComm Area
Admin Area
Company Responsibility (except conduits and wires)
FPH FPIC
Users
Anthony M. Mabasa Ana Maria S. Del RosarioIT Team (3 members)MCC group (13 members)
Anthony M. Mabasa Ana Maria S. Del RosarioMCC group (13 members)
AllAnthony M. Mabasa Ana Maria S. Del Rosario
All
Anthony M. Mabasa Ana Maria S. Del Rosario
All
Conditional Approval
FPIC Business Justification
IT Core Decision
(Y/N)
For management group (MCC & IT) need for research & technical support.
For management group (MCC & IT) need for research & technical
support.
For management group (MCC & IT) need for research & technical
support.
Required by some sites for fast access & other
related transactions like BIR EFPS
filing/payment .
MCC group (13 members) & IT Group (3)
For management group (MCC & IT) need for research & technical
support.
MCC group (13 members) & IT Group (3)
Anthony M. Mabasa Ana Maria S. Del RosarioIT Team (3 members)MCC group (13 members)
Anthony M. Mabasa Ana Maria S. Del RosarioIT Team (3 members)MCC group (13 members)
Anthony M. Mabasa Ana Maria S. Del RosarioIT Team (3 members)MCC group (13 members)
Anthony M. Mabasa
For management group (MCC & IT) need for research & technical
support.
For management group (MCC & IT) need for research & technical
support.
For management group (MCC & IT) need for research & technical
support.
For management group (MCC & IT) need for research & technical
support.
For management group (MCC & IT) need for research & technical
support.
Ana Maria S. Del Rosario
IT Team (3 members)
Anthony M. Mabasa Ana Maria S. Del RosarioIT Team (3 members)
For management group (MCC & IT) need for research & technical
support.
For management group (MCC & IT) need for research & technical
support.
Anthony M. Mabasa Ana Maria S. Del Rosario
For management group (MCC & IT) need for research & technical
support.
Needed for research, training, including
foreign training w/c hosts locally.
Selected users
Selected users
Ma. Celeste M. Tan
Anthony M. MabasaIreneo A. Raule Jr.Ana Maria S. Del RosarioRobert Vincent R. LedesmaRafael O. SantosMarivic F. Minioza
Anthony C. Cepillo
PresidentComptroller
Computer (Windows XP standalone) with Oil Accounting Software in
DOS.
Needed for transfer of files (pictures, heavy
files, etc)
MCC group (w/ 13 members) Other assigned to projects (for non-MCC froup)
Laser colored printer - (needed for immediate printing of materials like
for Board meeting, plans & drawings, other
presentation). 1 scanner Scanner - for
Document Management System
(volume jobs)
Engineering
Anthony M. Mabasa Ireneo A. Raule, Jr.Ana Maria S. Del RosarioRobert Vincent R. LedesmaRafael O. SantosCrisis Room c/o Admin
Laser colored printer - (needed for immediate printing of materials like
for Board meeting, plans & drawings, other
presentation). 1 scanner Scanner - for
Document Management System
(volume jobs)
Plotter - for large format printing of designs/plans & TO, etc.
Delay in receiving and outdoing calls during
peak hours due to congestion. Emergency
calls might not reach FPIC. Old numbers are
in database of crisis team (comprises of
stakeholders).
Timekeeping/Payroll
Payroll Accounting
FPIC FPEC
Users
Robert IsonTrinidad BinuaJen GarciaArt De GuiaOddie MadatuAriel OngDerick DegayLuis TrinidadRommel BolusHRITAll
Conditional Approval
FPEC Business Justification
IT Core Decision (Y/N)
Allow access to websites for Marketing,
HR, Executives & IT
Research and information
Robert IsonTrinidad BinuaJen GarciaArt De GuiaOddie MadatuAriel OngDerick DegayLuis TrinidadRommel Bolus
Robert Ison
Allow access to websites for Marketing,
HR, Executives & IT
Research and information
Allow access to Facebook, Linkedin,
Dropbox, Sendspace, Youtube for Marketing,
HR, Executives & IT
Recruitment, big file sharing to consultant
and business partners, Youtube - download
trainings, best practices and IT troubleshooting,
Allow access to Skype, RDP, Teamviewer.
Remote access for off-site server, remote desktop and chat
facility when communicating to
consultant or business partners
Robert Ison
Rita Capucao
Allow access to Skype, RDP, Teamviewer.
Remote access for off-site server, remote desktop and chat
facility when communicating to
consultant or business partners
BPI Corporate Online approval using
cryptokit, RCBC BIR approval, report
generation in Great Plains
Judy Narag
Robert IsonTrinidad BinuaJen GarciaArt De GuiaOddie MadatuAriel OngDerick DegayLuis TrinidadRommel Bolus
Robert Ison
BPI Corporate Online approval using
cryptokit, RCBC BIR approval, report
generation in Great Plains
Allow access to Facebook, Linkedin,
Dropbox, Sendspace, Youtube for Marketing,
HR, Executives & IT
Recruitment, big file sharing to consultant
and business partners, Youtube - download
trainings, best practices and IT troubleshooting,
GIMP - free photo editor installed to
Robert; Adobe reader & Winrar for all windows users
Selected users
Selected users
Selected users
Art de Guia Ariel OngLuis Trinidad
Jen Garcia
Art De Guia Ariel Ong
Company assigned laptop
Personal iPad and Company issued
Samsung Android.
Access to email and google apps
Rita Capucao
Judy Narag
Trinidad Binua
MANCOM
Robert Ison
Rita Capucao
Judy Narag
IBM stand alone desktop server.
Accounting Software Great Plains for
printing cheque and accounting transactions
Allow use of Windows 8.1 operationg system
Company issued storage for data
backup
Use of dot matrix printer Epson FX-2175
132cpi for cheque voucher printing
Accounting requirement in printing
bank cheque thru accounting software
Great Plains
Use of dot matrix printer Epson FX-2175
132cpi for cheque voucher printing
Accounting requirement in printing
bank cheque thru accounting software
Great Plains
MANCOM
Robert Ison
Remote connection to Batangas office thru IP-
Sec configuration - Already discussed with
Joseph. Access to ERIC ERP application
and online leave approval
FPEC Therma
Conditional Approval Users
For research and general info
ManagmentAll StaffRemote
Therma Business Justification
For research and general info
AllRemotes
Remote Sites thru RBC (Thermaprime network)
All
Note: Personal Laptop
Romerico C. Gonzales Alfonso G. Baena
All
Alfredo C. Saman
Lea Navia
Network Printer for HR group Alfredo C. Saman
Printing needs for Managers
Eric J. MontesManuel Roxas
Allow the use of company issued USB & External HD
Finance requirement for check printing.
Condrado M. Abanilla
Printing needs for Managers
John M. GozoWilfredo T. CapilMelchor T. MarianoRonald TablanteJoey R. Romero
Plotter - HP Designjet 510
Alfredo C. Saman
Cecilia F. Uy
HRAdmin
For Timekeeping/payroll Alfredo C. Saman
Alfredo C. SamanTV Screens (6 units) Company's Dashboard (company responsibility)
FB
Conditional Approval FB Business JustificationIT Core Decision
(Y/N)
Research and general information
Research and general information
For team collaboration
Remote Support
Quicknet First Balfour Accounting Software
Protection for Viruses and Trojans
Executives are Mac Users and need full internet
access
Printer for Executives
Guest Laptops will be used for temporary Internet
Connection.
File server currently on a dedicated desktop has
Linux as its OS
Printer for Executives
for Document Transmittal
cable TV for Executives
We use it for time keeping.
FB
Users
ManagementIT
All Staff
IT Core Decision (Y/N)
Conditional Approval
All
All
All
All
Jonathan C TansengcoAlbert Ignacio
Florello Del Rosario Estuar
Anthony Paul De Leon Fernandez
10 guest users
Albert Ignacio
Florello Del Rosario Estuar
Juliet De Castro
Anthony Paul De Leon Fernandez
Maria Carmela Lozada Hombrebueno
Charleen Paraon
Florello Del Rosario Estuar
Maria Carmela Lozada Hombrebueno
Charleen Paraon
Anthony Paul De Leon Fernandez
admin
FGEN
FGEN Business Justification Users IT Core Decision (Y/N)
BDG TSD Groups workstations:HR
Youtube - need to research on technology and instructional
materials for learning and updating of knowledge and
skills.
Dropbox - the groups frequently deals with external contractors and agencies for their projects and exchange
files such as designs, documentations and other materials; these files are
mostly big files and in their experience, Dropbox is easier
to use for them and their external contacts.
All
Mancom
Selected Mancom members are used to and comfortable
with Apple Mac laptops. Their Apple Mac laptops enable
them to navigate through and work with the different
applications faster.
Selected usersEmployees who require to
transfer files to another device or to bring with them the files
when they travel (using a portable storage device) will be provided by the company
the encrypted USB Flash Drive with Anti-Virus Software.
Being encrypted, files on the flash drive can be accessed only by the user who knows the password to decrypt the
files. This addresses the security issue with the data on the flash drive. With the anti-virus software on the device, infection of malwares will be
prevented.
MancomCZU 910-0252DHV 635-2755EPS 635-3426Estela Dela Paz 637-3955GBP 910-0661Val Dy Sun 638-3023OOCFRL DSLOCC c/o Sarah MateJosette MendozaFRLSCH2 Other Users
Admin Fax 637-8366BDG Telefax 638-4706Central Fax 631-4691Corp Comm Fax 914-5146Finance Telefax 635-2322Legal Fax 910-4846OC TelefaxFRL Telefax
Denise Fajardo (Treasury) 638-4705Venie Villanueva (Accounting) 633-1300
Used by the different departments for FAX
communication, and outside contacts are familiar with these
numbers
FGEN FPIP
Conditional Approval FPIP Business Justification Users
Henry CoJun LizardoNoel CustodioJaninna MendozaVic MontinolaEr SensonKat SantosLala FuentesLynn OngPaolo Asis
Lydia PotestadesCris BronLiezl Sawali
Aime ValleSheena CarisoJocelyn Plaza
Research, News monitoring Social Media Updates /
monitoring Regulatory compliance Online company related financial transactions
Presentations support / tech support search for suppliersInternet research in support of business development
Internet research in support of business development
Support to Ofc of the President, presentation support, search for info, images, travel info, etc.
Supplier search / research in supprt of accrediationAllow the use of the following:
Government sites (BIR, PEZA, BSP, etc.), financial institutions websites (BPI,
Metrobank, etc.), philippine dealing system
(http://www.pds.com.ph/), Dropbox, OneDrive,
Sendspace, YouTube, http://www.weatherlink.com/user/fpip, www.fpip.com
"Allow the use of the
following: FB / LinkdIn / job search sites / kalibrr /
Government sites (DOLE, PagIBIG, SSS, etc.) / online
traiing sites, educational instituion sites, SaaS sites (HRIS, recruitment, etc.),
Dropbox, OneDrive, Sendspace, YouTube,
http://www.weatherlink.com/user/fpip, www.fpip.com,
PAGASA
Precy Belgira
Aime ValleSheena CarisoJocelyn Plaza
Allow the use of the following: Govt sites (LRA, HLURB,
Google Maps, PEZA, etc.), Dropbox, OneDrive,
Sendspace, http://www.weatherlink.com/user/fpip, www.fpip.com
"Allow the use of the following: FB / LinkdIn / job
search sites / kalibrr / Government sites (DOLE,
PagIBIG, SSS, etc.) / online traiing sites, educational
instituion sites, SaaS sites (HRIS, recruitment, etc.),
Dropbox, OneDrive, Sendspace, YouTube,
http://www.weatherlink.com/user/fpip, www.fpip.com,
PAGASA"
All
Henry CoJun LizardoNoel CustodioJaninna Mendoza
Vic Montinola
Execuive use/preferred hardware/personal use
Compay issued equipment, executive use / preference
Henry CoJun Lizardo
Noel CustodioJaninna Mendoza
Vic Montinola
Kat SantosAime Valle
Lydia PotestadesPrecy Belgira
Henry Co
Jun LizardoNoel Custodio
Janinna Mendoza
Vic Montinola
Allow the use of the following: Guest Laptops (10)
Alex RoqueShigeo Fukuda (Macbook
personal)Kendrick Yu
Kazumi CarpenaJeff Panado
Mark Caluag Others (4)
For file sharing with Batangas, back up to online
file sharing, files back up
Henry CoJun Lizardo
Noel CustodioJaninna Mendoza
Vic MontinolaEr SensonKat Santos
Lala FuentesLynn OngPaolo AsisAime Valle
Sheena CarisoJocelyn Plaza
Lydia PotestadesCris Bron
Liezl Sawali Precy Belgira
Confidential files, presentations
Lynn OngCris BronLiezl Sawali Precy Belgira
Lynn Ong
Confidential files, presentations
Company transactions, commuications / file
transmittal back up with Batangas
Timekeeping, payroll
Aime ValleSheena Cariso
FPIP
Conditional ApprovalIT Core Decision
(Y/N)
Asian Eye
Item AUP Guideline1a Workstation
1b Endpoint Security
1c Windows 7 OS
1d MAC Macs will be on an exception basis
1e
1f Browsers
Every laptop and desktop must be from a branded manufacturer : Dell, IBM, HP, Lenovo, Asus, Sony
End-user devices should have prescribed endpoint security software installed.
Every laptop and desktop must have at least the following minimum OS version of windows 7 Professional
Applications that needs to be installed in PC
Only official licensed business-related software may be installed on end-user devices. Software installations will be executed by official company IT administrators.
* - open for discussion. (Admin Rights to be centralized with company IT)
Google Chrome as standard Browser, other browsers will need to be approved
PROSFast. Voice search. No ads. Leading support for HTML 5. Good security. Syncing with drive. Built-in Flash player and PDF reader.
2a Websites
2b Video Streaming
2c Social Media
2d Chat
3a
3b Guest Laptops
Allow specific websites to be accessed
Pornographic, terrorist, malicious and torrent-related websites will be blocked.
websites to avoid and are typically some people are more tech savvy than others. Guidance and safety measures should be applied to protect the network from malicious and viruses etc.
Block: abortion, alcohol, death/gore, drugs, gambling, mature, nudity, pornography, provocative, proxy, suicide, tobacco, and weapons.
Video-streaming websites are not permitted unless officially authorized.
Social Networking is not permitted unless officially authorized.
Chat is not permitted unless officially authorized
Tablets & Smartphones
Only company issued end-user devices will be allowed to connect to the guest network upon request.
Jail-broken devices will not be allowed to connect to the network
Accessing company email on personal devices will require the user to sign a wipe waiver form
Only authorized devices will be allowed to connect to the company network. Visitors will be provided guest connectivity to the internet.
3c
3d Tethering
4a Cloud Storage
4b
5 Remote Sites
6
Stand Alone Printers
Standalone printers will not be connected to the network (USB only) but will require space & power
Tethering and wifi sharing devices will only be allowed for BCP purposes.
The use of non-company, non-cloud storage is highly discouraged.
All company information must be stored and backed-up only on the company approved storage
External HDD and USB
Use of non-company issued external storage is restricted
Company issued workstations will have the USB ports and CD ROMs disabled
Remote sites connecting to the group MPLS must comply with the following:-100% compliance with the RBC3 shared guidelines
-Enterprise-grade Firewall-Web Filtering-Network Access Controls
Direct Lines & Faxes
Direct Lines that are not connected to the IP Telephony System and will be handled by each company. Cat6 provision to the Tel Room will be provided by fitout
7 Cable TV Cable TV provision will be provided in each Executive / VP Room by fitout contractor but will be handled by each company. RG6 Cable provision to the Tel Room will be provided by fitout
RationaleTo maintain a minimum standard for workstations and guarantee that the information on the workstations and the network will not be compromised by:- Unverified hardware configurations for clone PCs- Threats hidden in unverified software installers
To maintain a minimum standard for workstations and guarantee that the information on the workstations and the network will not be compromised by:
- Viruses, Malware and external attacks
Prescribed Entrprise Edition AV : Gartner Top 5: Symantec, Mcaffee, TrendMicro, Sophos, Kaspersky.
To maintain a minimum standard for workstations and guarantee that the information on the workstations and the network will not be compromised by:- Outdated operating system vulnerabilities- Threats hidden in unverified software installers
Support for the MAC hardware, OS and its applications are at the early stages
Unauthorized softwares may contain viruses and Malware that may slow down or bring down the entire system
Chrome is designed with security in mind. It has a suite of security features in place that means that even if attackers find a hole in one layer they have to bypass other security measures that are in place.
Hackers and cybercriminals are using flaws in Microsoft’s Internet Explorer to search computers to discover what kinds of security software they are running and how to take control of them, security researchers claim.
The exploits are allowing digital reconnaissance to be performed on a massive scale, across whole companies, computers, web servers and users without their knowledge, exposing holes in their security and allowing criminals to intelligently attack vulnerable machines.
Only business related websites will be allowed. Firewall URL filtering will be applied to obvious business related sites.
Apply proper business ethics and Code of internet conduct.
in case of downloading/watching, the data would range more or less between this for "1 HOUR" of VIDEO -
240p ~ 150 MB360p ~ 250 MB480p ~ 400 MB720p ~ 800-900 MB1080p ~ 1.2 -1.4 GB
Social networking affects people's work time and productivity.
Certain allowed time of use can be applied
Chatting (Social networking) affects people's work time and productivity.
Certain allowed time of use can be applied
Social Media thru apps carry malicious software Sometimes hackers go right to the source, injecting malicious code into a social networking site, including inside advertisements and via third-party apps
Unknown OS versions and appllcations are susceptible to viruses and vulnerabilities
Tethering will affect the central IT WIFI system
Users are encouraged to use the shared network printer.
In cases where AUP Exemption is approved, location of the printers are needed for power provision, hence its location of the printer in the floor layout has to be provided
integration with other Google services and ease of use. It boasts a great design, and is accessible to anyone with a Google account. Google Drive is linked with Google's full suite of apps, allowing users to create and store documents, spreadsheets, and Powerpoint presentations.
Google Drive is designed to do two things: create and share documents, and share files. By default you can create a new document, presentation, spreadsheet, form or drawing, and you can also connect third-party apps to add features such as note-taking, mind mapping, diagramming and even interior design.
Dropbox (popular, 50 million users) is more for personal than enterprise grade drive, security, frequent downtime, sync issues. integration with google apps. Icloud for mac integration and sync issues with google
Each employee should treat corporate information as a company asset and manage them responsibly
Objectives:
To protect company information against risks associated with external drives such as malware infections, data leakage and physical damage.
To leverage on the reliability that cloud storage provides, and protect against against intentional and unintentional data loss.
To allow the FPH Group to collaborate on a greater scale by storing and sharing information on the cloud.
To harden our network and ensure that network integrity is maintained.
Users are encouraged to use the unified communications systems.
In cases where AUP Exemption is approved, location of the DL & Faxes are needed for cat6 provision, hence its location the floor layout has to be provided for the conduiting and cabling
To assist the company in the move provisions are already in place in VP and Executive rooms.
For specific locations requiring Cable TV an AUP form has to presented and approved, as well as the location needs to be provided where the Cable TV will be installed. Processing of Cable TV contract will be done by each company
Consequences of non-compliance
Security vulnerabilities are know in IE and Other nonCommon browsers
Workstation will not be migrated to the AD.
Will not be connected to the FPH network
Potentially lose information and data due to unexpected hardware and software failures.
No hardware support for non-branded PC.
No QA
Units without anti-virus protection / Outdated or expired antivirus will not be allowed to connect to the network
Forescout NAC will only accept updated versions. Will not be allowed access to the network.
No troubleshooting support for MACs from central IT/IaaS.
Exemptions to be submitted on or before the scheduled AD migration.
Employees who are able to to install non-company software on their workstations will no longer be able to do so.
Non-IT administrators will no longer be able to run software installations.
No access by default
No access by default
IT resources such as connection bandwidth ans speed will not be ioptimized for business use
Network abuse may lead to bandwidth starvation
Personal and Company reputation may be affected.
Productivity of staff will be affected due to non-business related browsing
Video Streaming will take much bandwith and can slow clog the internet bandwidth especially when more than a few are watching streaming videos (especially high resolution).
Will affect others users especially the Google apps
Productivity of users will be affected due to social networking.
Time and productivity will be affected by the abuse. Access to this sites especially those opening videos posted in FB may result in bandwidth starvation
Productivity of users will be affected due to social networking.
Time and productivity will be affected by the abuse. Access to this sites especially those opening videos posted in FB may result in bandwidth starvation
If not provided to WS9 by 6-30-15 power provisioning as well as space may not be available
Employees who connect to the internet via tethering and wifi sharing devices without business need will not be allowed to do so
Use of unauthorized USBs and External storages may contain Malware and Viruses especially since it can be used on all other devices outside of the network. Home PCs or laptops...family members borrowing external drives can be contaminated
Employees who are able to connect USB drives, external harddrive and the like to their workstations will no longer be able to do so.
No remote sites will be allowed to connect to the RBC3 network unless fully complied
If location is not provided by 6-30-15 conduit and cabling provision will not be provisioned by the fitout
Group will be exposed to reputational and legal risks of unlicensed software.
No Exemptions for workstation AUP
If location is not provided by 6-30-15 conduit and cabling provision will not be provisioned by the fitout
WS1 - IP Address Management
1.03
YES
1.04YES
1.05YES
1.09 Target Date for completionYES 16-Jul
WS1 - AD Migration (TBD)
2.01
YES
2.02
YES
2.13 Target Date for completionYES 31-Jul
WS1 - Firewall for Remote Sites to RBC3
3.02
YES
Reference Document
Critical to Central IT
Deliverable (YES)
Critical Date for Central IT
Have all "Hardcoded" IP Addresses/ and IP Address conflicts been resolved or have a possible solution?
Have you communicated to IT Consultants/IaaS regarding your decisions, plans and concerns?
Do you have the necessary resources to complete the project?
Have you reviewed your AD plans? Indicate percentage completion
Have you completed your AD migration Plan and actions
AD Migration Plan (c/o DA)
Have you reviewed the firewall requirements for remote sites to connect to RBC3
3.04
YES
3.05 Do you have an approved budget
YES
3.12 Target Date for completion
YES 9/15/2015
WS1 - Stand Alone Printers
4.02
YES
4.08
YES
4.12 Target Date for completionYES 7/15/2015
WS1 - Existing IT Equipment
5.07
YES
5.09
5.10
YES
5.15 Target Date for completionYES 7/15/2015
WS2 - Transfer of OCC Data Center
Do you have the necessary resources to complete the project
Have you reviewed the floor plans where these printers will be placed. (Please check and verify with your HR)
July 21 2015 Floor Plan
Please attach signed conforme of your company executives on the AUP and AUP Exemption forms
Have you planned on relocation/redeployment IP Phones (Cisco)
Have you planned on relocation/redeployment Analog & Digital phones - for direct lines
Have you planned on relocation/redeployment/disposition Fax Machines
6.05
YES
6.06 Do you have a budget
YES
6.13 Target Date for completion YES 9/30/2015WS3 - Telco (E1) 7/9/2015
8.04
YES
8.12 Target Date for completion YES 15-SepWS3 - Telco (Direct Lines) transfer to RBC3
10.06
YES
10.13
YES
10.14 Target Date for completion YES 7/15/2015WS6/7 - CATV
11.03
YES 7/15/2015
11.12 Target Date for completionYES 7/15/2015
Do you have the necessary resources to complete the project
Have you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
* Central IT to share actions required from
company owning E1 Contract
Please identify location of the Direct Lines on the floors plan
Have you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Have you identified location of your executives, special users the location on the floor plan
WS3 - Connectivity - Migration to MPLS of sites
12.04
YES
12.13 Target Date for completion YES 15-SepWS5 - Review of RBC3 Acceptable Use Policy
14.04
YES
14.11YES
14.12 Target Date for completionYES 5/15/2015
WS5 - Upgrading of OS to Windows 7
16.02
YES
16.06 Do you have management's approval
16.11 Target Date for completionYES 7/7/2015
WS5 - Upgrading to Branded Laptops/Desktop
17.02YES
17.06 Do you have a budgetYES
17.12 Target Date for completionYES 7/7/2015
WS5 End-Point Security - workstation anti-virus software
17.02
YES
17.06 Do you have a budget
YES
17.12 Target DateYES 7/7/2015
Have you discussed with theTelcos your MPLS plans and concerns
* Central IT to share plan of when MPLS should be in
place per company (July
23)
Have you discussed with management the impact to non-compliance as well as Exceptions Form
AUP Exemption
Form
Pls insert your file here and
label as AUPExempt ## (exemption) ex AUPExempt01(
Macintosh)
Please attach signed conforme of your company executives on the AUP and AUP Exemption forms
Have you filled out and completed the Exemption Waiver Form (Below Windows 7)
AUP Exemption
Form
Have you filled out and completed the Exemption Waiver Form (Mac/Unbranded)
AUP Exemption
Form
Have you completed the process of procurement for the AV software
AUP Exemption
Form
WS5 - Use of External Devices
17.02YES
17.06 Do you have a budgetYES
17.10 Target DateYES 7/7/2015
Have you filled out and completed the Exemption Waiver Form (External Devices)
AUP Exemption
Form
FPH FGEN FPIP FPIC FPEC
YESYES YES YES
YES YES YES YES YES
YES YES YES YES YES
COMPLETED
8/28/2015 8/28/2015 8/28/2015 TBD
0\
YES
FPIC Server & Network 192.168.5.0 conflicts with FPEC. FPEC IP Address
changed to another block (indicate block)
YES
FPIC Server & Network 192.168.5.0 conflicts with FPEC. FPEC IP Address
changed to another block (indicate block)
7/16/2015 - COMPLETED
7/16/2015 - COMPLETED
7/16/2015 - COMPLETED
7/16/2015 - COMPLETED
7/16/2015 - COMPLETED
YES.
54% (31/57) complete
YES
95% (223/235) complete
YES
18% (4/22) complete
YES
(22/22) 100%
YES
54% (7/13) complete
NO.
46% (26/57) - 8/28/2015
NO
5% (12/235) - 8/28/2015
NO.
82% (18/22) - 8/28/2015
NO.
46% (6/13) - TBD
ON-HOLD - Awaitng AV approval & updated list of
resources who will move to RBC based
on re-org
7/31/2015 - COMPLETED
NA
No remote site to be connected to RBC
YES
Part of the MPLS implementation
NA
No remote site to be connected to RBC
YES.
Trends as vendor of choice.
YES.
There is a need to configure the IPSec between FPEC RBC to Batangas prior to
move to RBC.
NA YES NA
NA YES NA P240,000
NA NA 9/15/2015
FPIP Floor Plan FPEC Floor plan
8/31/2015 - TBC 9/30/2015 8/28/2015
YES YES No IP Phones No IP Phones No IP Phones
c/o ABG YES No DL No DL
Not yet YES No Fax
8/31/2015 - TBC Upon Move-in NA
YES.
Via Trends managed service for Firewall
YES.
Via Trends managed service for Firewall
YES
Via Trends managed service for Firewall
9/25/2015 - for MPLS
implementation completion
9/15/2015 - IPSec configuration completion
YES
Identified 12 units. List provided to HR
YES
Identified 12 units. List provided to HR
YES
Submitted Floor plans July 31 2015
YES
Pending due to unavailability of the
floor plan
YES
Submitted Floor plans June 29 2015
NO
IT Lead to prepare form and follow up
HR's approval
YES
IT Lead to follow up HR's approval
Working on floor plans
7/31/2015 - COMPLETED
7/31/2015 - COMPLETED
Telcos have been officially informed and will notify of transfer 1 month
move
YES
Submitted Floor plans June 29 2015
Identified movement to sites
7/15/2015 - COMPLETED
7/15/2015 - COMPLETED
YES YES c/o IaaS.
NA YES NA NA
NA 8/28/2015 NA 8/28/2015 NA
YES No E1 No E1 No E1
TBD 9/15/2015 - TBC NA NA NA
Not yet YES NA NA
8/31/2015 - TBC Move-in Date NA Move-in date NA
TBD Move-in date
NA
No servers to be transferred
NA
No servers to be transferred
NA
No servers to be transferred at OCC.
However, a stand-alone Great Plains
server will be relocated at RBC at
locat IT support arrangement
YES
All costs c/o FGEN except Insurances. Insurances to be
filed to have server & OS replacements
(est 300,000 per server , 7 servers)
Forwarded to ABG the details. Further action required. For Charlie's intervention
Forwarded to ABG the details. Further action required. For Charlie's intervention
No locations yet but users (23) have
already been identified but needs
validation on location with HR
No DL to be transfered
FPIC Personel Positioning in floor
not yet completed by HR
No DL to be transfered
Coordinated. For execution one month
before actual transfer
YES
Forwarded to ABG the details. Further
action required.
YES
VBS. FRL. Meeting Room
YES
All VP in the room has provisions
Crisis room has not been identified. Needed there
YES
All managers in the room has provisions
7/15/2015 - COMPLETED
7/15/2015 - COMPLETED
7/15/2015 - COMPLETED
YES
NA 9/25/2015 NA 9/15/2015 NA
YES YES YES YES
AUP FPH AUP FGEN AUP FPIP AUP FPIC AUP FPEC
TBD
Not yet YES YES YES
Not yet YES YES YES YESTBD
Not yet YES Laptop and Os YES
TBD YES YES
TBD 7/7/2015
YES YES
YES YES P1,400 per unit TBD
8/12/2015 9/30/2015 TBD
No MPLS connection.
No MPLS connection. possible
future requirement
YES
PLDT to be provided notice 1 month before transfer
No MPLS connection. All connection to Remote site is
through IPSec. c/o RCI
Forwarded to ABG the details. Further action required. For Charlie's intervention
6/8/2015 - COMPLETED
6/8/2015 - COMPLETED
6/8/2015 - COMPLETED
6/26/2015 - COMPLETED
YES.
1 unit c/o Oil Accounting System.
7/3/2015 - COMPLETED
7/3/2015 - COMPLETED
7/3/2015 - COMPLETED
7/7/2015 - COMPLETED
YES. Mac waiver (4) complete
1.4 M requested for 27 units
Will use available equipment
7/31/2015 - COMPLETED
7/3/2015 - COMPLETED
7/7/2015 - COMPLETED
YES
Awaiting delivery of Symantec Endpoint
YES
Kaspersky 10 has been "approved"
until 9/30/15
NO
Awaiting approval
No for other AV but have budget of Php
62,000 for Kaspersky 10 - 3
years
7/7/2015 - COMPLETED
7/7/2015 - COMPLETED
YES YES YES YES YES
YES YES P20,000 Existing with AUPwith budget and existing HDDs
8/5/2015 - COMPLETED
7/7/2015 - COMPLETED
8/7/2015 - COMPLETED
7/7/2015 - COMPLETED
7/7/2015 - COMPLETED
Therma FB EDC Rockwell Asian Eye
YES
YES YES
YES YES
7/16/2015 - TBC
8/28/2015 - TBC 8/25/2015 - TBC
YES
IP Conflict w FPIC on weroam has been
resolved
7/16/2015 - COMPLETED
YES
38% (23/60) complete
YES
73% (11/15) complete
NO.
62% (37/60) - 8/28/2015
NO.
27% (4/15) -8/25/2015
YES
Bayantel proposal stage (co-locate)
NA
No remote site to be connected to RBC
YES NA
NA
9/15/2015 NA
FB Floor Plan
8/28/2015 7/31/2015
No IP Phones
No DL No DL
9/15/2015 TBD
YES
30k per month
NOT YET
Will coordinate with HR
YES
Submitted Floor plans July 31 2015
Not yet.
Will coordinate with Jonathan
No plans will check w HR
Need to get updated plan from HR for fax
to be located
NA NA
NA NA
No E1
9/15/2015 - TBC
NA
NA
9/15/2015
NA
No servers to be transferred
No servers to be transferred
1 x E1 via Bayantel (15 channels
activated)
No DL to be transfered
No DL to be transfered
YES
Video Wall Dashboard
YES
All managers in the room has provisions
YES Ongoing discussion.
AUP Therma AUP FB AUP EDC AUP Rockwell AUP AsianEye
TBD
YES
YES YES8/28/2015 - TBC
YES YES
YES YES
7/7/2015 - TBC 7/7/2015 - TBC
YES TBD
10/30/2015 1/30/2016
No MPLS connection. possible
future requirement
6/8/2015 - COMPLETED
YES
Downgrading from 8 to 7 as per Lenovo
7/7/2015 - COMPLETED
YES
Kaspersky 10 has been "approved"
until 10/30/15
YES
Sophos 10.03 has been "approved" until 1/30/2016
YES YES
existing HDD Existing with AUP
7/7/2015 - COMPLETED
7/7/2015 - COMPLETED
LEGEND
Not Applicable
In Progress (On Track)
In Progress (Delayed)
1.03
1.04
1.05
1.09 Target Date
1.10
2.01 Have you reviewed your AD plans
2.02 Have you completed your AD migration Plan and actions
2.03
3.02
3.04
3.05 Do you have an approved budget
3.12 Target Date
4.02
4.08
4.12 Target Date
5.07
Reference Document
WS1 - IP Address Management
Have all "Hardcoded" IP Addresses/ and IP Address conflicts been resolved or have a possible solution?
Have you communicated to IT Consultants/IaaS regarding your decisions, plans and concerns?
Do you have the necessary resources to complete the project?
Please attach your IP Address inventory file (please save your updated file in google drive and share)?
WS1 - AD Migration (TBD)
AD Migration Plan (c/o DA)
Have all AD issues or conflicts been resolved or have a possible resolution
WS1 - Firewall for Remote Sites to RBC3
Have you reviewed the firewall requirements for remote sites to connect to RBC3
Do you have the necessary resources to complete the project
WS1 - Stand Alone Printers
Have you reviewed the floor plans where these printers will be placed. (Please check and verify with your HR)
July 21 2015 Floor Plan
Please attach signed conforme of your company executives on the AUP and AUP Exemption forms
WS1 - Existing IT Equipment
Have you planned on relocation/redeployment IP Phones (Cisco)
5.09
5.10
5.15 Target Date
6.05
6.06 Do you have a budget
6.13 Target Date
7.01
7.02 Have you negotiated your penalty clause if any
7.03 For with Penalty Clause: Have you an approved budget
7.05
WS3 - Telco (E1)
8.04
8.12 Target Date
10.06
Have you planned on relocation/redeployment Analog & Digital phones - for direct lines
Have you planned on relocation/redeployment/disposition Fax Machines
WS2 - Transfer of OCC Data Center
Do you have the necessary resources to complete the project
WS3 - Telco (Internet)
Have you started your circuit termination discussion with all your Telco providers
Remarks: If any of the above is a "no" or "?" please specify
Have you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
WS3 - Telco (Direct Lines) transfer to RBC3
Please identify location of the Direct Lines on the floors plan
10.13
10.14 Target Date
WS3 - Telco (CATV)
11.03
11.12 Target Date
12.04
12.13 Target Date
14.04
14.11
14.12 target date
16.02
16.06 Do you have management's approval16.12 Target Date
17.02
17.06 Do you have a budget
17.12 Target Date
Have you coordinated/endorsed all of the items for relocation/redeployment/disposition to its proper owners
Have you identified location of your executives, special users the location on the floor plan
WS3 - Connectivity - Migration to MPLS of sites
Have you discussed with theTelcos your MPLS plans and concerns
WS5 - Review of RBC3 Acceptable Use Policy
Have you discussed with management the impact to non-compliance as well as Exceptions Form
AUP Exemption Form
Please attach signed conforme of your company executives on the AUP and AUP Exemption forms
WS5 - Upgrading of OS to Windows 7
Have you filled out and completed the Exemption Waiver Form (Below Windows 7)
AUP Exemption Form
WS5 - Upgrading to Branded Laptops/Desktop
Have you filled out and completed the Exemption Waiver Form (Mac/Unbranded)
AUP Exemption Form
WS5 End-Point Security - workstation anti-virus software
17.02
17.06 Do you have a budget17.12 Target Date
19.03
19.06 Do you have a budget
17.02
17.06 Do you have a budget
Requirement for resource
Major Priority Actions1. Is it applicable?
2. Gap exists?
5. Detailed work plan to remediate gap
Have you completed the process of procurement for the AV software
AUP Exemption Form
WS 6 & 7- Timekeeping
Have you checked with your existing Timekeeping vendor the requirements for integration/Data collection needed by your system to integrate with the Door Access System in RBC3
WS5 - Use of External Devices
Have you filled out and completed the Exemption Waiver Form (External Devices)
AUP Exemption Form
3. Determine resources and budget required to address gap
4. Schedule required by the Central IT deliverable dependent on it on when gap should be remediated
FPH
Is it applicable Gap that exists Action Plan
YES Yes
YES
YES
YES 16-Jul
4/30/2015
YES (25/57) 47.37%
YES Ongoing
YES
YES
YES
YES 9/15/2015
YES
YES
YES 7/15/2015
YES
Critical to Central IT
Deliverable (YES)
Critical Date for Central IT
No Gaps exist will comply with RBC standard
YES
YES 7/15/2015
YES
YES
YES 9/30/2015
7/9/2015
YES
YES 15-Sep 9/15/2015
YES
* Central IT to share actions required from company owning E1
Contract
YES
YES 7/15/2015
YES 7/15/2015
YES 7/15/2015
YES
YES 15-Sep
YES
YES AUP FPH
YES
YES 7/7/2015
YES
YES
YES 7/7/2015
* Central IT to share plan of when MPLS
should be in place per company (July 23)
Pls insert your file here and label as AUPExempt ## (exemption) ex AUPExempt01(Macintosh)
Clone PCs need to be upgraded
YES
YESYES 7/7/2015
YES
YES
YES
FPH FGEN
Target Date Completion Date Notes & Remarks Is it applicable
Yes
Yes
Yes
7/16/2015
Yes
(199/209) 95%
Ongoing
0\
Yes
Yes
Ongoing
9/25/2015
c/o Jojo
7/27/2015
Yes
Resource & Budget needed to address
the Gap
Identified 12. Seat plan c/o HR
Identified 12. Seat Plan c/o HR
No information
No information
7/27/2015
Yes c/o IaaS.
Yes
9/30/2015
No
No
1xE1 via Bayantel
9/15/2015
Yes - mostly with Bayantel
No locations yet but users (23) have already been identified but needs validation on location with HR
No
7/27/2015
7/15/2015
Yes
9/25/2015
Yes
AUP FGEN
Yes
Yes7/3/2015
Yes
Yes
7/7/2015
VBS. FRL. Meeting Room
Yes
7/7/2015
Yes
Yes
Yes
7/15/2015
Yes
Technical support from HP for storage/fiber-based
Alignment with HR on Personnel Planning
FGEN
Gap that exists Action Plan Target Date Completion DateResource & Budget needed to address
the Gap
FGEN FPIP
Notes & Remarks Is it applicable Gap that exists Action Plan
Yes
Yes
7/16/2015
0
Not started, no AV
No remote site
FPIP Floor Plan
7/31/2015
No IP Phones
Resource & Budget needed to address
the Gap
May need extra hands for support
Already submitted previously, is this a new requirement?
Yes. Submitted Floor plans July 31 2015
7/15/2015
No E1
Yes. Submitted Floor plans June 29 2015
Yes. Submitted Floor plans June 29 2015
No servers to be transferred
No DL to be transfered
7/15/2015
Yes
AUP FPIP
Yes
Yes7/3/2015
Laptop and Os
7/31/2015
All VP in the room has provisions
No MPLS connection. possible future requirement
1.4 M requested for 27 units
Symatec
8/7/2015
Yes
PM
Yes
1.4 Million
Yes
with budget and exsiting HDDs
IBSI Interconnection
Need clarification on IBSI Plans
FPIP FPIC
Target Date Completion Date Notes & Remarks Is it applicable Gap that exists
YEs
Yes.
Yes.
7/16/2015
FPIC List of IP
(22/22) 100%
Ongoing
240,000
9/15/2015
7/15/2015
No IP Phones
Yes. Server & Network 192.168.5.0 conflicts w FPEC however, JL has recommended to change FPEC IP Address to another block
Yes. Trends as vendor of choice.
Yes. Via Trends managed service for Firewall
Users identified but personnel positioning pending
Working on floor plans
7/15/2015
Yes c/o IaaS.
No E1
Telcos have been officially informed and will notify of transfer 1 month move
Identified movement to sites
All costs c/o FGEN except Insurances. Insurances to be filed to have server & OS replacements (est 300,000 per server , 7 servers)
8/14-15/2015 (noncritical)8/21-22/15 (critical)
Telco-intenet contract is beyond holding period (Bayantel and PLDT)
FPIC Personel Positioning in floor not yet completed by HR
7/15/2015
7/15/2015
9/15/2015
AUP FPIC
Yes7/3/2015
Yes
Yes
7/3/2015
Coordinated. For execution one month before actual transfer
Crisis room has not been identified. Needed there
Yes. PLDT to be provided notice 1 month before transfer
Ongoing discussion. FPIC Security is still in-force.
Yes. 1 unit c/o Oil Accounting System.
9/30/2015
Yes
20000
PM
Yes
312,000
9/30/2015
Yes
Yes. Kaspersky 10 has been "approved" until 9/30/15
AV & Remote Connectivity
FPIC
Action Plan Target Date Completion Date Notes & RemarksResource & Budget needed to address
the Gap
FPEC
Is it applicable Gap that exists Action Plan Target Date
Yes.
Yes.
7/16/2015
(1/8)12.5%
Ongoing
IPsec configuration
No Cost
9/15/2015
FPEC Floor plan
7/31/2015
No IP Phones
Resource & Budget needed to address
the Gap
Yes. No conflict however there is a need to configure IPSec between FPEC RBC to Batangas.
FPEC IP Firewall Config
Yes. Via Trends managed service for Firewall
Yes. Submitted Floor plans June 29 2015
No DL
No Fax
7/15/2015
No E1
No servers to be transferred
All telco contract is out of locking period. Can request service termination month before the transfer
No DL to be transfered
7/15/2015
Yes
AUP FPEC
Yes
Yes7/7/2015
7/7/2015
All managers in the room has provisions
No MPLS connection. All connection to Remote site is through IPSec. c/o RCI
Yes. Mac waiver (4) complete
Will use available equipment
Yes7/10/2015
Yes
Existing with AUP
Technical Support
Yes
AV budget approval
28,200
7/10/2015
Yes
Setup TrendMicro Server and Endpoint with updates
FPEC Therma
Completion Date Notes & Remarks Is it applicable Gap that exists Action Plan
Yes.
Yes.
Yes.
7/16/2015
(13/53) 23.64%
Ongoing
Yes.
Yes. 30k per month
9/15/2015
No info from HR
Getting HR details
7/15/2015
Yes. Bayantel proposal stage
Will coordinate with Jonathan
No DL
7/15/2015
9/15/2015
No plans will check w HR
Will set meeting with Bayantel to discuss circuit termination in line with the RBC transfer
1 x E1 via Bayantel (15 channels activated)
No DL to be transfered
7/15/2015
Ongoing discussion.
AUP Therma
Yes7/31/2015
Yes
Yes
7/7/2015
No. Video Wall Dashboard
Downgrading from 8 to 7 as per Lenovo
10/30/2015
Yes
existing HDD
Yes
7/24/2015
Yes
Yes. Kaspersky 10 has been "approved" until 10/30/15
Technical support for AD from Trends
Windows 8 downgrade
Therma FB
Target Date Completion Date Notes & Remarks Is it applicable
Yes
Yes
7/16/2015
(6/8) 75%
Ongoing
FB Floor Plan
7/31/2015
No IP Phones
Resource & Budget needed to address
the Gap
Yes. IP Conflict w FPIC on weroam has been resolved
No connection with Sucat HO
Yes. Submitted Floor plans July 31 2015
No DL
7/15/2015
No E1
Need to get updated plan from HR for fax to be located
No servers to be transferred
No DL to be transfered
Ongoing discussion.
AUP FB
Yes
Yes7/7/2015
Yes
Yes
7/7/2015
All managers in the room has provisions
No MPLS connection. possible future requirement
7/7/2015
for confirmation
Existing with AUP
Technical Support
Yes
No gaps
Yes
Yes. Sophos 10.03 has been "approved" until 1/30/2016
FB
Gap that exists Action Plan Target Date Completion DateResource & Budget needed to address
the Gap
FB EDC
Notes & Remarks Is it applicable Gap that exists Action PlanResource & Budget needed to address
the Gap
AUP EDC
EDC Rockwell Asian Eye
Target Date Completion Date Notes & Remarks
AUP Rockwell AUP AsianEye
Item Priority Action Gap that exists
FGEN
1.1
1.2 AD Migration
1.3 Remote Site Connectivity Remote sites has to connect to OCC server
1.4 Move of Servers to OCC risks on server migration
1.5 Telco Lines (Termination and/or Move)
1.6 Move E1 Telco coordination and project plan
1.7 Time keeping
FPH
2.1 Replace Branded PC, Win OS 7, AV Actual inventory of PCs for compliance
2.2
2.3 AD Migration No AD due to Item 1
2.4 Telco Lines (Termination and/or Move)
2.5 AD Migration
2.6 Move E1
2.7 Time keeping
FPIC
3.1
3.2 Remote Site Connectivity
3.3 Move of Servers to OCC
3.4 Telco Lines (Termination and/or Move)
3.5 Crisis room systems
FPIP
4.1 Replace Branded PC, Win OS 7, AV
4.2 AD Migration4.3 IBSI Connectivity for backend4.4 Telco Lines (Termination and/or Move)4.5 Time keeping
FPEC5.1 Replace Branded PC, Win OS 7, AV5.2 AD Migration5.3 Sikat Foundation5.4 Telco Lines (Termination and/or Move)5.5 Time keepingFB
6.16.2 AD Migration6.3 Telco Lines (Termination and/or Move)6.4 Time keeping
Therma
7.17.2 AD Migration7.3 Telco Lines (Termination and/or Move)7.4 Move E17.5 Dashboard Video Wall7.6 Telco Lines (Termination and/or Move)7.7 Time keeping
Floor Plan showing DL, Standalone Printers, CATV
No information from HR on locations (outside of VP rooms)
10 units for conversion. MAC issues on AD
Coordination of bldg CACS to timekeeping system
Floor Plan showing DL, Standalone Printers, CATV
No location for systems outside the VP rooms
Floor Plan showing DL, Standalone Printers, CATV
Floor Plan showing DL, Standalone Printers, CATV
Floor Plan showing DL, Standalone Printers, CATV
Action Plan Target Date
8/7/2015
Accenture & Test Unit
Ces to provide DA actual number 8/30/2015
8/15/2015
Resource & Budget needed to address the Gap
Request from HR Ms.Bunny the final locationsAccenture and Trends to provide resolution on MAC issues on ADDetailed MOP & Run sheet for the remote connectivity
CRV offered CC to help in the conversion to complete the conversionCes has provided Ms. Bunny the list of IT
equipment for the users.
Completion Date Notes & Remarks