Find Terms by Theme: Enterprise Architecture

An interconnected set of IT resources under the same direct management control that meets a defined set of business needs.

The process of ensuring the identity of a connected user or participants exchanging electronic data.

The activities performed by the agency to ensure critical functions are available to entities needing access to those functions.  Business continuity is related to restoring normal day-to-day functions in the event of service disruptions. Business continuity planning is different than disaster recovery planning.

All public-facing content, including websites, applications, documents and media, blog posts, and social media content. Certain non-public-facing content that must also comply. Examples include: All electronic content used for official business to communicate: emergency notifications, initial or final decisions adjudicating administrative claims or proceedings, internal or external program or policy announcements, notices of benefits, program eligibility, employment opportunities or personnel actions, formal acknowledgements or receipts, questionnaires or surveys, templates or forms, educational or training materials, and web-based intranets.

A known system defect or enhancement request that if left unresolved could significantly impact business operations, compliance with statute or policy, the integrity of the system or data or otherwise create a public health, safety or other significant risk areas.

Physical protection against damage from fire, flood, wind, earthquake, explosion, civil unrest and other forms of natural and man-made risk.

Network-level access originating from outside the network. Examples include SSL, IPSec, “terminal service” or Citrix-like connections.

The processes, procedures, systems, IT infrastructure, data, and communication capabilities that allow each agency to manage, store, and share information in pursuit of its business mission, including but not limited to:

• Applications.
• All data typically associated with IT systems regardless of source (agency, partner, customer, citizen, etc.). 
• All data typically associated with IT systems regardless of the medium on which it resides (disc, tape, flash drive, cell phone, personal digital assistant, etc.).
• End-user authentication systems.
• Hardware (voice, video, radio transmitters and receivers, mainframes, servers, workstations, personal computers, laptops, and all end point equipment).
• Software (operating systems, application software, middleware, microcode).
• IT infrastructure (networks, connections, pathways, servers, wireless endpoints).
• Services (data processing, telecommunications, office automation, and computerized information systems).
• Telecommunications hardware, software, and networks.
• Radio frequencies.
• Data computing and telecommunications facilities.
• Intelligent control systems such as video surveillance, HVAC, and physical security.

Risk assessment is a process by which to determine what IT Assets exist that require protection, and to understand and document potential risks from IT security failures that may cause loss of information confidentiality, integrity, or availability. The purpose of a risk assessment is to help management create appropriate strategies and controls for stewardship of information assets.

Software and/or hardware designed to prevent an attack on a network or computer system. An IPS is a significant step beyond an IDS because it stops the attack from damaging or retrieving data. Whereas an IDS passively monitors traffic by sniffing packets off of a switch port, an IPS resides inline like a firewall, intercepting and forwarding packets. It can thus block attacks in real time.

Inventory costs represent a substantial portion of the total cost of ownership for many organizations. Proper inventory management requires an investment of time and resources. Carrying insufficient inventory may have adverse mission impacts or consequences. Carrying too much inventory ties up capital, is usually inefficient, requires extra storage space, and for items with a limited shelf life may lead to costly disposal actions

IT Infrastructure Maintenance involves the planning, design, and maintenance of an IT Infrastructure to effectively support automated needs (i.e. platforms, networks, servers, printers, etc.).

IT System Development / Integration Support includes the software services enabling elements of distributed business applications to interoperate and the software development necessary to facilitate such integration. These elements can share function, content, and communications across heterogeneous computing environments

A form submitted to a potential employer by a potential employee to collect basic information about the applicant such as employment history, education, training, and contact information

Defines the set of capabilities to facilitate collection of data and information

Software (such as a Trojan horse) that appears to perform a useful or desirable function, but actually gains unauthorized access to system resources or tricks a user into executing other malicious logic.

The process of preparing management reports and accounts that provide accurate and timely financial and statistical information required by managers to make day-to-day and short-term decisions. Unlike financial accounting, which produces annual reports mainly for external stakeholders, management accounting generates monthly or weekly reports for an organization's internal audiences such as department managers and the chief executive officer. These reports typically show the amount of available cash, sales revenue generated, amount of orders in hand, state of accounts payable and accounts receivable, outstanding debts, raw material and inventory, and may also include trend charts, variance analysis, and other statistics

Support the maintenance and administration of data that describes data

Modularity refers to the extent to which a software/Web application may be divided into smaller modules. Software modularity indicates that the number of application modules are capable of serving a specified business domain. Allows typical applications to be divided into modules, as well as integration with similar modules, which helps developers use prewritten code. Modules are divided based on functionality, and programmers are not involved with the functionalities of other modules. Thus, new functionalities may be easily programmed in separate modules. It is a practical application of the principle of "Separation of Concerns" by dividing a complex system into simpler and more manageable modules that will work together Modularization can take place in two ways: The Composition or bottom-up approach takes modules and puts them together to form a larger system The alternative approach is to take a complete system and decompose it into its modules. This approach is known as the decomposition or top-down approach. Modules are technically connected to one another. The measure of inter-module relation is known as coupling. Design goals require modules to have low-coupling and high cohesion. Cohesion is a measure of the inter-relatedness of elements (statements, procedures, declarations) within a module. A module is said to have high cohesion if all the elements in the module are strongly connected with one another. Tight coupling of modules makes analysis, understanding, modification and testing of modules difficult. Reuse of modules is also hindered. Modularity enhances the understandability of software systems and change process. Developers need not have to understand the entire system for changes to be made as details are localized into components; modularity separates concerns down to the modules and is thus a direct realization of the principle of "Separation of Concerns"

A device available to other computers on a network. Examples include servers, firewalls, routers, switches, workstations, networked Supervisory Control and Data Acquisition (SCADA) systems, and networked printers (multifunction devices).

The administration of employee compensation and benefits on a scheduled basis through a centralized payment system

A systematic process of objectively obtaining and evaluating evidence regarding the performance of an organization, program, function, or activity. Evaluation is made in terms of its economy and efficiency of operations and effectiveness in achieving desired goals. The performance audit function provides an independent review of management's performance and the degree to which actual performance meets pre-stated goals

Physical security describes measures that prevent or deter attackers from accessing a facility, resource, or information stored on physical media in an IT facility.

Defines the set of capabilities to support the administration of a group of investments held by an organization

The process of obtaining or buying goods and services consistent with RCW 39.26 with the intent to Purchase. Purchasing, renting, leasing, or otherwise acquiring any supplies or services; includes all functions that pertain to the acquisition, including description of requirements, selection, and solicitation of sources, preparation and award of contract, and all phases of contract administration. The combined functions of purchasing, inventory control, traffic and transportation, receiving, inspection, storekeeping, salvage, and disposal operations

The acquisition of goods or services, including the leasing or renting of goods

A distributed system framework that uses Web protocols and technology. The REST architecture involves client and server interactions build around the transfer of resources. Systems that conform to REST principles are referred to as RESTful.

Separation of an employee who meets the age and service requirements to receive retirement benefits and has filed an application for retirement with the Department of Retirement Systems - includes tracking and/or managing an employee's retirement eligibility status throughout the life cycle of an employee's career

A secure version of File Transfer Protocol (FTP), which facilitates data access and data transfer over a Secure Shell (SSH) data stream. It is part of the SSH Protocol. This term is also known as SSH File Transfer Protocol.

The security requirements and methods applied by agencies to manage IT security risk including but not limited those defined in the OCIO IT security standards.

The voluntary or involuntary act of leaving Washington State service

Computer application readable description of capabilities, requirements, general characteristics, abstract message operations, concrete network protocols, endpoint addresses, and structure and content of messages received by and sent by the service.

Style of software design where services are provided to the other components by application components, through a communication protocol over a network. The basic principles of service-oriented architecture are independent of vendors, products and technologies. A service is a discrete unit of functionality that can be accessed remotely and acted upon and updated independently, such as retrieving a credit card statement online. According to TOGAF, under the terms of an SOA, a service has four properties: It logically represents a business activity with a specified outcome. It is self-contained. It is a black box for its consumers. It may consist of other underlying services.

A service-oriented architecture design principle for creating services that can be used for business purposes beyond those initially specified in requirements. Reusable services are designed so their solution logic is independent of any particular business process or technology.

Shared, common infrastructure for lifecycle management such as a services registry, policies, business analytics; routing/addressing, quality of service, communication; Development Tools for security, management, and adapters.

Strategic workforce planning looks at system-wide issues and strategies to: Support the organization's strategic plan (e.g., reorganization and redeployment) Address external workforce factors that affect the entire business (e.g., succession planning for retirement bubbles, or staff reduction planning for budget cuts). Maintain organizational capacity (e.g., in-service training) Mitigate risk exposure (e.g., safety planning and Equal Employment Opportunity training)

For the purpose of go live readiness, supporting organizations include the agency(s) and any vendor(s) who are involved in operations and support of the ongoing system/investment. Processes include any unique to the time immediately after go-live as well as those on-going processes required to effectively operate and maintain the system/investment once it is implemented into production.

Support the balance and allocation of memory, usage, disk space and performance on computers and their applications.

Threat and Vulnerability Management involves all functions pertaining to the protection of federal information and information systems from unauthorized access, use, disclosure, disruptions, modification, or destruction, as well as the creation and implementation of security policies, procedures and controls. It includes all risk and controls tracking for IT systems.

Training is activities designed to develop employees' job-related knowledge and skills for present job assignments as well as future career development goals.  The enterprise level administrative function is the maintenance of training records for state employees.

An IT system or network that is recognized automatically as reliable, truthful, and accurate without continual validation or testing.

The management of an entity selling a good or service to the State.  Vendors include, but are not limited to, retail businesses, consultants, contractors, manufacturers, credit card companies.  A vendor may be an individual, corporation, non-profit organization, federal government, or federal agency, local government or local agency, another state or another state agency, a Washington state agency, or Indian nation.  For travel reimbursement purposes, a vendor may include an employee, a board member, or volunteer

Relates to risk of attack. In IT terms, vulnerability describes points of risk to penetration of security barriers. Awareness of potential vulnerability is very important to designing ever more effective defenses against attack by unauthorized parties.

Web Infrastructure includes equipment/services to support delivery of services over the Internet or similar networks. These include supporting: Network Services which consists of protocols defining the format and structure of data and information either accessed from a directory or exchanged through communications; Service Transport which consists of protocols defining the format and structure of data and information either accessed from a directory or exchanged through communications.

An XML format for describing network services as a set of endpoints operating on messages containing either document-oriented or procedure-oriented information. The operations and messages are described abstractly, and then bound to a concrete network protocol and message format to define an endpoint.

An OASIS specification that proposes a standard set of SOAP extensions that can be used when building secure Web services to implement message content integrity and confidentiality.