>> Anyone here have any advice to offer on good ways to get the ball >> rolling without causing a riot amongst my users? > > Without creating a riot amongst the users? That's easy -- you ignore the > problem and hope it goes away.
Tempting... > You pretty much have to get HR and legal involved as step one. Just as > IT, you pretty much have no enforcement power Indeed and thankfully HR are very much on board with supporting (metaphorically) slapping people for breaking policy and I had legal check the policies (AUP, password, general security, VPN and server) when I first wrote them, so they're happy and on board as well. I took note of other peoples' experience in small companies like this one as well as my own in other companies, and made sure of HR, legal and top management buy-in before communicating policies. It is probably one of the key things for internal IT to create and maintain a good relationship with HR, legal and finance and, oh boy, has it helped me here so far. > and will make a lot of > enemies attempting to get some. If the people with enforcement power > (read: HR and legal) won't make a policy and actually enforce it, then > you're back to the easy method above -- ignore it and hope it all goes away. Totally agreed. I feel sorry for people responsible for corporate systems who don't have the backing of HR/legal/finance. -- http://www.totkat.org/ _______________________________________________ Tech mailing list [email protected] http://lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
