NSW Government Information Management Framework Sonya Sherman Principal Policy Officer, Information Strategic Policy, DFS Records Managers Forum, 25 November 2013
NSW ICT Strategy
ICT Strategy - Key Initiatives Service NSW: A new service culture that is responsive to community needs. - DPC Open Government: Fresh approach to engaging with the public and industry through online and social media technologies. - DPC Open Data: Making government data available to stimulate the development of innovative approaches to service delivery. - DFS Managing Information for Better Services: Framework of common information standards across government and using information better to enhance service delivery. - DFS Infrastructure and Managed Services: Taking advantage of consolidation, virtualisation, sourcing as a service and cloud technologies. - DFS Procurement Reform: New approach to ICT procurement to enable early engagement and better value expenditure. - DFS ICT Skills and Innovation: Building public sector ICT skills with the assistance of industry and the research sector. – DFS (with Public Service Commission)
Open Data Make high quality government datasets available to industry and the community Stimulate innovative solutions to service delivery and the provision of information Key Elements Open Data Policy launched 11 Nov Open access licensing (Ausgoal) Data.nsw (and apps4nsw)
Managing Information for Better Services Support the secure reuse of information and data for better services, improved performance management, and a more productive public sector Key Elements Information management framework & standards Information Security Sharing information assets Location Enabled Data
Information Management Framework “…a broad suite of standards, guidelines and resources to bring a rigorous whole-of-govt approach to the State’s information assets” Key Elements Common approach to information architecture Standards for data quality and exchange Standards for metadata Guidelines to manage/transition legacy systems
Approach to Information Management To realise its potential value, data and information must be managed strategically, coordinated across NSW Government. Outcomes-driven 7 principles
Standards To encourage interoperability, enable sharing and re-use of information, standards must meet specific business needs. Business-driven 5 criteria
Information Management Framework
Digital Information Security Policy Requires NSW Agencies to have an Information Security Management System (ISMS) Requires a minimum set of controls from AS/NZ ISO 27002 in IT Security Techniques Certain agencies are also to certify compliance with AS/NZ ISO 27001 Annual attestation of compliance in Annual Reports
Implementation timelines What When Status Commence implementation Dec 2012 Complete Establish Community of Practice Nominate Senior Responsible Officers Jan 2013 1st implementation progress report July 2013 Full compliance Dec 2013 In progress Implement information classification system Jan 2014 2nd implementation progress report Pending Attestation in annual report Jun 2014
Information classification Dissemination Limiting Markers Sensitive Sensitive: NSW Government Sensitive: NSW Cabinet Sensitive: Legal Sensitive: Personal For Official Use Only (FOUO) DFS C2013-5 Information Classification and Labelling Guidelines
Implementing classification Old New Personnel-in-confidence Sensitive: Personal Cabinet-in-confidence Sensitive: NSW Cabinet Legal-in-confidence Sensitive: Legal Commercial-in-confidence Sensitive: NSW Government Protected Highly protected Or use appropriate security classification DFS C2013-5 Information Classification and Labelling Guidelines
Answers to FAQs … Unlabelled information should be unclassified Only relabel information if business need requires it Build classification into systems See the Change Management guidance on the ICT Strategy website (www.finance.nsw.gov.au/ict/resources) Talk to your Senior Responsible Officer Use the ready-reckoner cards and website (coming soon….) Ask us at: informationsecurity@finance.nsw.gov.au
Other Questions….?
Questions for you… How does the idea that information managers are ‘pushing on an open door’ align with your experiences? How do you use/describe these outcomes and principles in your work? What words help you to best communicate the message? How have you approached the adoption of standards? Has this worked? How have benefits been realised? What stories can you tell of services improved through re-use of information?
Go to the website www.services.nsw.gov.au/ict Follow us on Twitter @ICT_NSW Like us on Facebook at NSW ICT Strategy or Apps4nsw Email us at NSWICT@services.nsw.gov.au