Working with our public sector partners towards informed compliance

Information Governance & Security

Information is a vital asset to any organisation, regardless of whether it is in the Public or Private sector. To support an organisation in its objectives, Information must be of high quality, timely and robust as well as adhering to a raft of legislative and regulatory standards. There are two underlying drivers that are key to efficient, effective information management services; Governance and Security.

Information Governance

Information Governance is the name given to a framework that consists of a collection of guidance and assessment criteria for the various components that have a direct impact upon the information management processes of an organisation.

To be effective, the accountability for information management must rest with the Board of the organisation and be embedded in corporate culture, policies, procedures and individual responsibilities.

Key subjects within Information Governance include;

  • Legislative Compliance (i.e. Data Protection, Freedom of Information)
  • Information Quality (Data Quality)
  • Records Management
  • Management Processes (IG related)

An organisation utilising the Information Governance framework can be assured that it has a process in place to ensure information is managed in line with industry standards, regularly assessed and has adopted a continuous improvement approach to information management.

Information Security

Supporting the information governance arrangements within any organisation is the security infrastructure. Like Information Governance, Information Security encompasses the whole organisation and is vital in ensuring that the information governance processes have a solid foundation to build upon. The key components of Information Security include:

  • Policy & Procedures
  • Asset Management
  • Human & Physical Security
  • User Access Controls
  • Business Continuity / Disaster Recovery Planning
  • Statutory and Legislative Compliance

The ISO/IEC 17799 Code of Practice for Information Security Management provides guidance for organisations on how to initiate and maintain their local information security infrastructure.

We can help you...

We are able to support your organisation in meeting the requirements of Information Governance and Security by:

  • Undertaking audits against standard requirements
  • Development of 'gap-analysis' and follow-on action plans
  • Assisting with business change processes to support action plans
  • Development of policies and procedures
  • Training and awareness briefings, communication planning

Contact alan.bonfield@publicpartners.org for more information.

Join Us

 

To subscribe to FOI+ please click here

Valid XHTML Valid CSS Web Accessible
© P-PACT 2010  |  Privacy Policy  |  Terms & Conditions