80 likes | 199 Views
Improving Information Assurance in Central Government. Steven Johnson London LibTeachMeet June 20, 2011. What’s brought us here…. In response to high profile data losses the Hannigan report of June 2008 looked at data handling across government. Why Information Assurance?.
E N D
Improving Information Assurance in Central Government Steven Johnson London LibTeachMeet June 20, 2011
What’s brought us here….. • In response to high profile data losses the Hanniganreport of June 2008 looked at data handling across government
Why Information Assurance? • Protecting the public • Delivering effective government • Information Assurance contributes to this by ensuring information is • handled securely • accurate • available to the right people at the right time
Information Paperdocuments Disks Conversations Files Email Textmessages Memorysticks Software Computerprograms Mobiledevices Databases ALL POTENTIALLY CREATE RISK
Whatareinformationrisks? Governance & Culture Info management & technology Info availability & use The human dimension Handling mistakes badly 3rd parties let you down Poor records management Inaccurate/lost information Inappropriate disclosure Failure to disclose Despite procedures staff make mistakes
Confidentiality Integrity Availability HMRC UK Transplant NSPCC Hospitals Social Services Police Housing Victoria Climbié Secure– wrongly destroyed, lost, disclosed, leaked, stolen Accurate– errors, data missing, data incomplete Available– not shared, system failure, wrongly classified, lost, misfiled, not readable
Information Assurance Roadmap Info Assurance Risksmanagedandpublicprotected HMRC UK Transplant VictoriaClimbié Define&implementpolicy Identifyassets Assignroles EstablishGovernance Implementprocedures Managerisk Educate & trainstaff Monitor & audit Lead and foster a culture that values, protects and uses information for the public good
Further Information Useful linkshttp://www.cesg.gov.uk/about_us/index.shtmlhttp://www.cabinetoffice.gov.uk/resource-library/data-handling-procedures-government _____________________ Steven Johnson is a former civil servant who specialised in Information Management and Information Technology projects and roles including; as Project Support Manager for the Home Office Information Assurance Programme putting in place the Cabinet Office Data Handling Report requirements and most recently as the Deputy PMO Manager for the Next Generation IST Transformation (NGISTT) Programme to implement a shared IST infrastructure and services the Home Office Group need to work together in the most productive and cost effective way. http://www.linkedin.com/in/stevenjohnson9 / stj_9@hotmail.com