After talking with Damian McLoughlin, our DEM Information Services Manager, I wanted to share the text below re: DRAFT Social Media Guide. Like all organizations, we are seeking that right balance between the best use of these new tools and how to appropriately integrate their reality into our operations in a safe, secure and common sense manner that supports our communications efforts. From a public information officer perspective, I find social media increasingly essential for both communicating and as a force multiplier for gaining and spreading situational awareness. For us, the unique gap these efforts fill is sharing information directly, in a wide manner, and in a less formal path than a traditional press release or through reliance on third parties to distro. Thinking about it, I'll cut this line of thought short since I am by no means the first, most qualified or sole source to hammer away on the need and utility of social media. There are so many other people out there who articulate its need and attributes better than I can. Simply put, these tools are a reality and we are trying to use them in a smart and appropriate manner.
In integrating new web-based applications and pathways, we are hesitant to fall into a "shiny new object" syndrome and are mindful to ensure that we select message pathways appropriate for our message, our audience(s), etc. We have not found the perfect answer, but we have made and effort to confront associated challenges, from an emergency management perspective.
We approached social media as a joint effort between our public information office, operations and information technology staff. We are lucky to work closely together to find solutions that strike a balance between technical and individual use concerns. While I have worked to research and draft social media policies that address information flow, handling, and theory of use in a general social media standard operating procedures document to which individual sites are/will be addressed in annexes (...thought is that it is more important to capture "concepts" of use than bank all use on an individual social media tool as new ones spring up, fall away or as their use vacillates), we have worked closely with our IT to develop a DRAFT standard use policy to ensure it is consistent both with our web-use policy and addresses individual use and business case procedures.
I am happy to share any of the drafts with you or to discuss how we, at least, approach the use/integration of social media into our operations. We have even spent time thinking about how it might be integrated into operational response to bridge some of the issues related to the now, real-world co-location of information gathering, writing unit and dissemination unit actions addressed by the National Incident Management System (NIMS) and Incident Command System (ICS) structures... but I don't want to get too "weedsy" here. If you want to get copies of some of these docs, want to provide some input or would like to give an extra set of eyes on what we have in development from an emergency management perspective, just shoot me an email to brandon.williams@state.co.us and I would be happy to share, talk and listen.
All this is leading up to sharing the top-level document (below) that Damian and IT have been working which I think is a clear, concise and solid approach to meeting the challenge of social media integration as a business case into emergency management in an IT-friendly manner. We thought you might find it interesting. Of course, I must caveat that this is a working document. It might change. But, I think it is a really solid start for a common sense approach and if you have any input or thoughts, again, just contact me!
------
DRAFT Social Media Guide
Overview
This document outlines the guidelines for access to Social Media Internet sites. Social media sites are currently blocked from access by the Department's Internet filtering rules. Access is granted on a business case need as outlined in the process below.
Scope
These guidelines are a detailed extrapolation of the Department's Systems Access and Acceptable Use, of the Department's Cyber Security Policies (ref).
Where no specific policy or guideline exists, employees are governed by the Department's Acceptable Use Guidelines and should take the most prudent action possible. Consult with your manager or supervisor if you are uncertain.
Guidelines
The use of Social Media sites (Twitter, Facebook, MySpace, etc…) for communication with the public and other agencies must be done in an ethical and responsible manner. The absence of, or lack of explicit reference to a specific site does not limit the extent of the application of this policy. Users will abide by the following rules of conduct.
1. All interaction, correspondence, postings and communication with social media sites representing the Department must be conducted with professionalism and courtesy at all times. You are a representative of the department even if you are accessing the site from your own personal computer on your own time.
Anything posted online is public information, conduct yourself with the understanding your supervisor, colleagues, general public and customers will read your comments.
Do not post or link any materials that are defamatory, harassing or indecent.
Do not promote personal (non-departmental) projects or endorse commercial brands.
Respect third party copyrights.
Keep confidentiality.
Misconduct or behavior deemed inappropriate may be grounds for personnel action.
An agreement must be signed by all “owners” or creators of Department social media sites. This agreement must be in place prior to the creation of the site and submitted to and approved by OIS.
The Department’s Public Information Officer must be notified when new content is posted on the site.
Process
Social Media sites are restricted by the Department's Internet filtering rules. Access is granted on the basis of a business case need.
1. Submit a written request to the Department's office of information services (OIS) for access to Social Media sites (email is sufficient).
1.1. Requests must be approved by your division director (an affirmative email from the director is sufficient).
1.2. Submission should include answers to the following:
1.2.1. What sites are being requested for access?
1.2.2. What is the purpose of access? Is it for reading content of others or posting content as a representative of the department?
1.2.3. Who will be the single point of contact (POC) or owner of the content?
1.2.4. What tools or utilities will be used for managing content? Do they:
require local installation?
cost money?
have licensing requirements?
2. OIS will review the request with DOLA Public Informatoin Officer (PIOs)
3. Upon approval for access, the POC will be notified and an orientation / policy review will be conducted with OIS. An override account will be created for use by the POC. This account can be used by the POC at the internet filter block page to continue on, to what would normally be, blocked Social Media sites.
4. The POC will be required to sign this document as an acknowledgment of understanding of the governing policies and guidelines.
Acknowledgment (signed)
Since more and more users/employees are accessing social media sites with personal smartphones will the policy address smartphone use for business related social media efforts?
ReplyDeleteGood question. We certainly use our smartphones to engage in social media actions for situational awareness, in-team comms and for outbound comms. My gut is that the web-use policy applies equally whether a user is accessing the sites via a smartphone, laptop or traditional desktop. But, we didn't specify that explicitly in the policy and maybe we should.
ReplyDeleteFrom a PIO perspective, we did select social media site(s) - including this blog - that were smartphone-friendly so the role of smartphones certainly had an impact on our selection process based upon our communication needs and anticipated users/audience. Too, we have integrated into our PIO standard operating procedures for incident/EOC activation the upload email addresses to enter into supporting PIO smartphones to enable direct updating of text, photo and video.
But, good question - I'll get together with Damian next week and see what types, if any, mods we should make and will post an update here from that conversation.
Issue update - I talked with Damian (our State DEM IT officer) about the specific reference to personal smartphones in the policy. We are going to take a look at the text and will probably come up with a blanket language capture designed to: 1) clarify that the web use policy applies to any Dept-issued device used to access the web(e.g., laptop, desktop, smartphone) AND 2) the web-use policy extends to cover any action by an employee engaged in official state business (a doing business as) cover effort.
ReplyDeleteIn this way, we could cover not only the smartphone actions, which we think are probably implicit in the idea that the tools such as phones and computers are used to access the web but would also cover those actions conducted on personal devices, public access points, etc, where one might engage in or act as a representative of the state but where a dept-issued device is not the method employed in the representation.
So... in short, that was a great question that helped us consider an adjustment to the draft we had not envisioned. Thanks!!!