03. Healthsafe IT Resource Request Policy

IT RESOURCE REQUEST POLICY

VERSION HISTORY

Sl No	Version No.		Prepared by	Approved by	Description of Version	Date	Reason for Version Change
Sl No	From	To	Prepared by	Approved by	Description of Version	Date	Reason for Version Change
1	1.0	-	CISO	MD	First Release	14 Apr 2020	No changes made
1	1.0	1.1	CISO	MD	Updated	21 Jun 2021	Modifications due to changes in HealthSafe
1	1.1	1.2	CISO	MD	Reviewed	23 Jul 2022	Annual review
1	1.2	1.3	CISO	MD	Reviewed	15 Aug 2023	Annual review

DOCUMENT STATUS

Table of Contents

The purpose of this document is to establish and maintain a policy for IT resource requests for HealthSafe NZ.

These procedures apply to all aspects of IT Resource Requests

Abbreviation	Description
IT	Information Technology Department
TL/PM	Team Lead / Project Manager
CISO	Chief Information Security Officer

Provisioning the required resources

User, TL/PM/CISO/FH

If the nature of the requests are related to providing access or updating access in the source code repositories, the Software/Repository Access Request Form is duly filled by the relevant team member. The access permission is either updated if it’s an existing user or shared via LastPass if it is a brand new user account.
If the nature of user requests are related to upgrading or replacing computers or software procurement, the Software/Hardware Requisition Form is duly filled by the relevant team member. On receipt of the new hardware or software, the list of software license documents should be updated including the asset register. The timelines of the resolution will be communicated to the user(s), TL/PM via email.

Necessary requests forms are approved by CISO and in some cases CEO or Director.