Skip Navigation
Technology at Your Fingertips
Chapter 1: Knowing What to Do

Chapter 2: Knowing What You Need

What is a Needs Assesment?

Who Should Do Your Needs Assessment?

Who Should Participate in the Needs Assessment Process?

What are the Steps in the Needs Assessment Process?

Functional Needs

Technical Requirements

Security and Ethical Standards

Writing Your Statement of Needs

What Should Be Included in a Set of Functional Specifications?

Chapter 3: Knowing What You Have

Chapter 4: Knowing What to Get

Chapter 5: Knowing How to Implement Your Solution

Chapter 6: Knowing How to Train Users

Chapter 7: Knowing How to Support and Maintain Your Technology Solution
line
Chapter 2:  Knowing What You Need


Security and ethical standards
Everyone in the education community is required to secure the data that are maintained on our computer systems. The level of security might be different for a school district (where information is stored about students who are not adults) than a college or university. The Family Education Rights and Privacy Act (FERPA) is very clear about the regulations that must be considered.

Security is defined as protection from threats to the equipment, functioning, and contents of your technology. Controlling access to and ensuring the security of the information within your computer system and through your network connections are critical if you are planning to keep confidential or sensitive data, such as the information that is kept in student and staff records. You should give some thought to the potential internal and external threats to the functioning and contents of your technology solution, such as:

  • Unauthorized access.
  • Snooping or browsing.
  • Tampering with data or programs.
  • Intentionally disclosing data.
  • Sabotage through the introduction of viruses and other destructive programs.
A review of the NCES publication Safeguarding Your Technology will be helpful when determining your organization's security needs and strategies.

Ethical standards are also important, since you are likely to develop a technology solution that is used by many people, including staff, students and others within the community. You should give some thought to what types of limits you may need on access to your different technology components, as well as any guidelines and disciplinary procedures that may be needed to ensure appropriate use, particularly if you are worried about the availability of objectionable materials. These should be included in an Acceptable Use Policy statement to be developed later.

For the Needs Statement, it is sufficient to state: "The technology solution should contain features that allow for the control of access by users of the technology to certain programs and particular information. The control of access must comply with local, state, and federal requirements regarding confidential data. In addition, technology guidelines should reflect established ethics for appropriate usage."

Selecting appropriate locations for the equipment and choosing physical security measures are also critical to the security of your technology solution. Threats to the equipment may include:

  • Theft.
  • Vandalism (computers have been short-circuited and bombed).
  • Accidents (such as broken water pipes).
  • Natural disasters.
For the Needs Statement, you should note that physical security measures must be sufficient to prevent theft, vandalism, and other types of harm to the equipment. You will also want to know what will happen if equipment is stolen or lost. Does your organization have insurance or are you self insured? Are there local regulations that are in place for the protection of equipment?

Ensuring the security of information and equipment should always be specified in your list of needs, as you may be putting your entire system (both information and equipment) at risk. This is not a risk worth taking.

Mini-Case Study

<< back    >> next

Top of Page