Incident Reporting
The standard WARP incident response form is available here
Publications
Protecting Information in Government Report
In June 2008, The Cabinet Office published the first report into cross government data handling procedures. That report put in place a set of unprecedented mandatory measures for government departments to improve the way they manage and handle personal data. Protecting Information in Government [PDF 850KB, 30 pages] takes stock of the progress made since the publication of the Data Handling Review and highlights future challenges.
Changing data handling culture remains the greatest challenge – not just for government but for every organisation. Protecting Information in Government shows the significant and far-reaching progress that has been made in the way we value and handle personal data through greater transparency, accountability, scrutiny and education. This includes well over 450,000 civil servants now trained in data security awareness.
The report also recognises there is no room for complacency - improving information security will always be a continuing process.
Digital Britain
On 16 June the Government published The Digital Britain Report, its strategic vision for ensuring that the UK is at the leading edge of the global digital economy.
The report provides actions and recommendations to promote and protect talent and innovation in our creative industries, to modernise TV and radio frameworks and support local news, and introduces policies to maximise the social and economic benefits from digital technologies.
Cybersecurity Strategy
The Cyber Security Strategy announced strong new measures to protect the UK and British citizens from the growing threats to our security in cyber space and take advantage of the opportunities of Digital Britain.
Top 10 tips for security guidelines
CPNI have updated their website to include a large amount of useful information to help organisations with security planning.
Guidance on Preventing Data Exfiltration
CPNI have recently published information on how to secure systems from data exfiltration. This guidance is available here.
Personnel Security
CPNI have recently published two documents around personnel security:
Personnel Security- Threats, challenges and measures
Risk assessment for personnel security
They have also producted a paper regarding pre-employment document varification, which is available here
New Security Policy Framework
The government has recently published the new Security Policy Framework. This document replaces the manual protective security. The document includes the 70 minimum mandatory measures known as 70 green boxes. It should be noted that some detailed parts of this framework are protectively marked and are obtainable through CESG.
Download here
Data Handling and Encryption
A number of recent events have heightened awareness around a range of Information Security measures. This white paper the first of a series, to be produced through the National Local Authority WARPs (NLAWARP) initiative and supported by BeCrypt, will explore some of the issues and offer basic advice to Local Authority practitioners.
Download here
Data Handling Overview
Three reports have been published recently about Data Handling in the Government and Public Sector space. Each reporti makes a different set of recommendations that will impact widely on the public sector, the third party organisations that work with the public sector, and the wider business community.
This paper sets out to summarise the recommendations made in these reports.
Download here
Implementing Data Handling for Central Government
The Government report on handling data has now been published and the data handling
procedures in the document have been implemented within Central Government
departments. This document and its procedures have been shared with the Local
Government Association who will produce their own data handling procedures and
directives by the end of summer 2008. It is widely anticipated that these will closely
resemble those now adopted by Central Government.
Download here
IN YOUR FACEBOOK!!!
Do you regularly use Internet sites such as Friends Reunited, My Space
and Facebook?
Are you aware of the risks associated with putting your personal details
on the Internet?
In this brief paper we highlight the dangers of of social networks.
Download here
USB “Sticks” – BIG CONVENIENCE - BIG CHALLENGE
Even when used with the best intentions, the data stored on USB drives is generally not
covered by routine company procedures, such as backup, encryption, or asset
management. This whitepaper suggests 7 ways to secure personal storage devices.
Download here
