Data Governance Job Descriptions - Data Custodian
Data Custodians are Information Technology or computer system administrators responsible for the operation and management of systems and servers which collect, manage, and provide access to clinic data. Data Custodians must be authorized by the appropriate Data Owner or the CIO.
Data Custodian responsibilities include:
- Maintaining physical and system security and safeguards appropriate to the classification level of the data in their custody
- Complying with applicable clinic computer security standards
- Maintaining Disaster Recovery plans and facilities appropriate to business needs and adequate to maintain or restart operations in the event systems or facilities are impaired, inaccessible or destroyed
- Managing Data Consumer access as authorized by appropriate Data Owners
- Following data handling and protection policies and procedures established by Data Owners and Information Security
- Complying with all federal and state laws, regulations, and policies applicable to the institutional data in their custody
Departments that develop databases and/or systems from clinic data and then provide access to this data to other users are considered Data Custodians. These Data Custodians must be authorized by the appropriate Data Owner, approved to further redistribute clinic data and must implement the minimum required safeguards for the source data as prescribed by the Data Owner and Information Security.