This Risk Management Plan is an overall look at how Defense Logistics Information Service can protect its data. The implication of lost confidential government data is the primary cause for this plan, and will be treated with the utmost importance.
2. GUIDING PRINCIPLES
This plan will be presented through a formal, written, written risk management, and security safety program.
The Security Safety and Risk Management Program supports the DLIS philosophy that government safety and risk management is everyone’s responsibility. Teamwork and participation among management, providers, and staff are essential for an efficient and effective patient safety and risk management program. The program will be implemented through the coordination of multiple organizational functions and the activities of multiple departments.
DLIS supports the establishment of such clauses and best practices. An in depth looks at mistakes made and ways we can learn from them will be at the forefront of our investigation. Constructive feedback will play a large part as well. In a just culture, unsafe conditions and hazards are readily and proactively identified, mistakes are openly discussed, and suggestions for systematic improvements are welcomed. Individuals are still held accountable for compliance with safety and risk management practices. As such, if evaluation and investigation of an error or even reveal reckless behavior or willful violation of policies, disciplinary actions can be taken.
3. SCOPE AND BOUNDARIES
The DLIS Security and Safety Risk Management Program encompass many operational departments and services throughout the organization. Including the following:
• Buildings and grounds
• DOD regulatory compliance
• Disaster preparation and management
• Employee health
• Even/incident/accident reporting and investigation
• Human resources
• Information technology
• Legal and contracts
• Safety and security