Meeting Minutes 08/30/2023
Agenda
- MUG session content
- Overview of GRC / cybersecurity framework: https://www.nist.gov/cyberframework
- Brainstorming content for accessibility-a-thon
MUG Session
Understanding the critical need for SSO, Password Management, and MFA in your library
- Session will not be recorded, but we will work towards creating good takeaway documentation
- Bring in some components of cyber liability insurance questionnaires
Overview of GRC
- Marmot is beginning to implement the cybersecurity framework NIST CSF using the Drata platform (drata.com)
- Formailizing security processes, controls over the coming months
- Policies will initially only apply to Marmot staff and organization, and then eventually expand to member libraries
- Policy language that applies to member libraries will be brought to this committee for feedback
Accessibility-a-thon:
- General guidance
- Color contrast guidelines
- Image alt text
- Tools to decode reports. Library did a scan and got feedback, but some of it is hard to understand
-
Poll of directors to see where individual libraries are in terms of dealing with different components of accessibility
- Resource guide and a shared list of vendors that have been verified would be helpful
- CLiC contract for a tool that can be added to websites to enhance accessibility functionality (but does not fix accessibility issues if standards aren’t follow). https://reciteme.com/us/