1 / 11

BS 7799 Pilot

BS 7799 Pilot. Protecting your Information JISC Assist Workshop. Dr Mike Jinks Director, Computing Service. Information Strategy. agreed July 1999 process-based key business processes educational experience research managing external interface statutory requirements income generation.

ray-petty
Download Presentation

BS 7799 Pilot

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. BS 7799 Pilot Protecting your Information JISC Assist Workshop Dr Mike Jinks Director, Computing Service

  2. Information Strategy agreed July 1999 process-based key business processes educational experience research managing external interface statutory requirements income generation

  3. integrating and enabling processes principles and policies Information Strategy

  4. Information access and security policy covers all forms of information and media to be developed - 1999/2000 addresses ethical and statutory requirements + business continuity planning etc new data protection act confidentiality

  5. BS 7799 Pilot University policy of openness why? gain experience quickly right time investigate an ‘emerging’ standard outcome eg generic security policy - basis for part of local policy

  6. what? applicable to all forms of information concentrated on electronic information considered some relevance to management of official records most work undertaken within Computing Service BS 7799 Pilot

  7. applicable to all form of information more mature for electronic info useful checklists not as bureaucratic as expected not intending to become accredited unless necessary eg to obtain access to research data BS 7799 Pilot - conclusions

  8. devolved governance departmental systems many not actively managed ethos expect responsible actions policies and guidelines not regulations University issues

  9. development of information access and security policy many aspects different authors and areas of expertise education and awareness Heads of Department Departmental Computing Officers University issues

  10. implementation and monitoring risk assessment connection and disconnection collaborative research authority of centre local ‘CERT’ and UKERNA CERT University issues

  11. expectations of other sites level of standardisation - minimum levels? Role and relationships with UKERNA CERT generation and dissemination of best practice JISC UCISA HE community issues

More Related