Governance

A standard provides more details about how a policy or portions of policy will be implemented.

A technology policy outlines what needs to be accomplished or achieved and the roles and responsibilities of the various entities.

Per RCW 43.105.020, "Information technology" includes, but is not limited to, all electronic technology systems and services, automated information handling, system design and analysis, conversion of data, computer programming, information storage and retrieval, telecommunications, requisite system controls, simulation, electronic commerce, radio technologies, and all related interactions between people and machines.

The processes, groups and activities associated with decision making and the exercising of authority.

A Quality Assurance (QA) provider's assessment of the project's use of project management best practices, as well as their assessment of deficiencies or gaps in the application of those best practices that may have an adverse impact on the project.  Findings are assumed to require corrective actions.

The latest date a manufacturer will provide security patches.  Some manufacturers have an end of mainstream support date and an extended end-of support date.  In these cases, after the end of mainstream support, no additional software feature/function enhancements or fixes are issued but security patches are until the end of extended support.  The recommended best practice is to migrate before end of mainstream support.

All public-facing content, including websites, applications, documents and media, blog posts, and social media content. Certain non-public-facing content that must also comply.