You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 12 Next »

Working Plan for a shared folder hierarchy on a suitable server

Server: a pc- and mac-compatible file-sharing environment, with group and individual permissions.  It needs to be sufficiently secure to prevent spills of sensitive information on the web or otherwise.  The existing sparkler server, a windows server that exports to Macs and PC's natively, has evidently met the security test since it has all of IS&T's confidential information on it now.  AFS is also a possibility if administered carefully. 

Filespace:  assuming we use a server like sparkler, we would have a directory on that server that mounts as a drive letter on Windows and a desktop folder on the Mac.  Let's call it "CSS-managers"   We'd have essentially unlimited room inside the folder to store what we will, and the ability to carve off sections of it to have more restrictive permissions as needed.

Access: the set of individuals who can attach the CSS-managers folder are on the list of people who would be invited to our Quarterly Offsites -- Director, Managers, Team Leaders, FBC, HQ Support.

Structure: We need a nested hierarchy of progressively more restricted folders, in order to preserve the security of salary data.  Team Leaders need to be able to see the salary data for their people, but not for those of any other team leader.   Managers need to be able to see all their TLs data, but may need to have data of their own that the TLs must not see.  The FBC and the Director need to be able to see all. 

The overall design is intended to provide the most public access to group documents at the outermost level of the respective group.  Documents that show more specific detail about a single manager's area would be in a subfolder dedicated to that area.  Within that manager-specific folder would be more private areas for data that should be visible only to the director, manager, and a specific team leader.  Finally there is a most private area accessible only to the director and manager.  (The FBC is able to see into all areas and is understood to hold a position of trust.)

Overall then, we'd have this scheme:

folder

likely contents

 

css-managers/

  1. Published version of the quarterly Budget and Financial Projections document for all of CSS, aggregated by manager.
  2. Operating Plan for the fiscal year
  3. Quarterly report submissions to the IST-VP's office
  4. Resource Model for all of CSS
  5. Run Book of Procedures for important systems, services, etc.

 


→ manager area/

  1. Cost-object detail for quarterly Budget and Financial Projections.
  2. Manager-specific Operating Plans

 


→ → team leader area/

  1. Detailed salary information for the staff of the team leader and no others.
  2. Working financial document for identifying and explaining variances
  3. Resource Model worksheet for team leader's staff only

 


→ → manager-only area/

  1. Detailed salary information that should not be seen by any team leaders.
  2. Working financial document for identifying and explaining variances, including detail not to be seen by team leaders.
  3. Resource Model worksheet for team leader's staff only

 

The precise file structure might look something like this:

Folder

Subfolder

(more folders)"

Read-Write Permissions would be granted
to these userids and groups

Admin permissions
to these userids / groups

managers/

 

 

css-managers, css-tl, css-hq

css-managers

 

help/

 

css-managers, css-tl, css-hq

othomas, goguen, jfw

 

 

callcenter/

fbaars,  goguen, othomas, jfw, abdenna

othomas, goguen, jfw

 

 

n42service/

legand, goguen, othomas, jfw, abdenna

othomas, goguen, jfw

 

 

mgr/

jlreed, jfw, abdenna

jlreed, jfw

 

software

 

css-managers, css-tl, css-hq

jmhunt, jfw

 

 

swrt/

bowser, jmhunt, jfw, abdenna

jmhunt, jfw

 

 

vsls/

jmhunt, jfw, abdenna

jmhunt, jfw

 

 

mgr/

jmhunt, jfw, abdenna

jmhunt, jfw

 

tcp/

 

css-managers, css-tl, css-hq

jfw

 

 

dcad/

jlreed, jfw, abdenna

jlreed, jfw

 

 

usability/

jlreed, jfw, abdenna

jlreed, jfw

 

 

pubs/

cwood, jfw, abdenna

jfw, cwood

 

 

training/

kkibbee, jfw, abdenna

jfw, kkibbee

 

 

atic/

maryz, jfw, abdenna

jfw, maryz

 

 

mgr/

jfw, abdenna

jfw

 

security/

 

css-managers, css-tl, css-hq

tjm, jfw

 

 

mgr/

tjm, jfw, abdenna

tjm, jfw

 

hq/

 

css-managers, css-tl, css-hq

jfw, css-hq

 

 

mgr/

jfw, abdenna

jfw

 

homepage/

 

css-managers, css-tl, css-hq

lisanti, jfw

 

 

mgr/

lisanti, jfw, abdenna

lisanti, jfw

 

ditr/

 

css-managers, css-tl, css-hq

ndpope, jfw

 

 

desktop/

chuckk, pepsikid, ndpope, jfw, abdenna

ndpope, jfw

 

 

admin-it/

chuckk, pepsikid, ndpope, jfw, abdenna

ndpope, jfw

 

 

mgr/

ndpope, jfw, abdenna

ndpope, jfw

* NOTE: the folder names are suggestions only; managers should have naming control within their folders within reason.  We suggest not using individual names instead of teams or roles.

  • No labels