Presentation is loading. Please wait.

Presentation is loading. Please wait.

ISfL Protective Marking methodology July 2010. Local Government Data Handling Guidelines Ensure all staff are trained, updated and aware of their responsibilities.

Published byJack O'Neal Modified over 10 years ago

Similar presentations

Presentation on theme: "ISfL Protective Marking methodology July 2010. Local Government Data Handling Guidelines Ensure all staff are trained, updated and aware of their responsibilities."— Presentation transcript:

1 ISfL Protective Marking methodology July 2010

2 Local Government Data Handling Guidelines Ensure all staff are trained, updated and aware of their responsibilities Undertake regular risk reviews of all processes and procedures Ensure all key information assets are classified and are resilient

3 Code of Connection 3.2: Employees of the organisation who handle information carrying a protective marking of RESTRICTED MUST be made of aware of the impact of loss of such material and the actions to take in the event of any loss. 4.1: The mail client or user adds security labels to each email that carries a protective marking of PROTECT or higher

4 The problem Requires specialist knowledge Tendency to over classify Perceived as an onerous task by the business Divorced from handling Impact assessment – scale too large

5 HMG Infosec Standard No. 1 - Business Impact Table Impact on life and safety Impact on political stability Impact on military operations Impact on foreign relations Impact on intelligence operations

6 ISfL methodology Based on content Platinum, Gold and Silver Threshold scores Allows scaling in PROTECT [P1, P2] Flexibility to review Does not require specialist knowledge

7 ISfL methodology – Gold = 3 points Name Address DOB National identifier e.g. NI number, NHS number, Passport number, Driving licence Individual bank or financial details Police record or Community Safety client Record of benefits [DWP or LA] Case event e.g. referral, assessment, investigation, planning or review of services Corporate financial details that will not form part of public documents or records

8 ISfL methodology – Silver = 2 points S1 Photograph of person S2 Employment details S3 In receipt of specific personal council services e.g. home care S4 Legal documents including tenancy agreements, commercial contract or property details S5 Trading standards investigations and reports S6 Telephone number and/or email address S7 Corporate financial details prior to them forming part of public documents or records S8 Marital status or sexual orientation if not recorded in G8

9 Current status Discussions with CESG Internal ISfL discussions Bromley undertaking PoC with version 2 Data handling guide being produced

10 Issues One system as long as it is mine Threshold score All starting from a different point What is the difference in handling? Purist v Pragmatist

Download ppt "ISfL Protective Marking methodology July 2010. Local Government Data Handling Guidelines Ensure all staff are trained, updated and aware of their responsibilities."

Similar presentations

The organisation of labour inspection in France. Labour inspection within the Ministry of Labour Centre C Competition Consumer spending Fraud prevention.

The organisation of labour inspection in France. Labour inspection within the Ministry of Labour Centre C Competition Consumer spending Fraud prevention.
Managing the Health and Safety of Contractors

Managing the Health and Safety of Contractors
University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.

University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.
Battalion Level Staff PERSONAL STAFF GROUP COORDINATING STAFF GROUP

Battalion Level Staff PERSONAL STAFF GROUP COORDINATING STAFF GROUP
2 3 There are two basic areas where there is a need to have resources available. Internal:  Financial  Personnel  Assets  Time External  Consultants.

2 3 There are two basic areas where there is a need to have resources available. Internal:  Financial  Personnel  Assets  Time External  Consultants.
Health & Safety upon recruitment change of job or responsibility new equipment or technology changes in systems of work Why Do It? s2. HASAW Act 1974 The.

Health & Safety upon recruitment change of job or responsibility new equipment or technology changes in systems of work Why Do It? s2. HASAW Act 1974 The.
STRATEGIC PLANNING FOR Post-Clearance Audit (PCA)

STRATEGIC PLANNING FOR Post-Clearance Audit (PCA)
Unit 4- Assignment 3 P5, P6, M2 BTEC Business Level 3.

Unit 4- Assignment 3 P5, P6, M2 BTEC Business Level 3.
Gaucho Round-Up FAQ’s This presentation covers some of the FAQ’s about campus clean-up day. Presentation #4 2/3/2015 1.

Gaucho Round-Up FAQ’s This presentation covers some of the FAQ’s about campus clean-up day. Presentation #4 2/3/
Cathy Magowan Carer Support Developments Western Health and Social Care Trust (MARCH 2014)

Cathy Magowan Carer Support Developments Western Health and Social Care Trust (MARCH 2014)
Risk and Resilience Delivered by Alba www.albanetwork.co.uk.

Risk and Resilience Delivered by Alba
Revision from last week  Assumptions are potential failure points in a project. They need to be monitored and managed. At the start of the project they.

Revision from last week  Assumptions are potential failure points in a project. They need to be monitored and managed. At the start of the project they.
Revised Caldicott Manual- Practice Managers Groups Revised Caldicott Manual – November 2008.

Revised Caldicott Manual- Practice Managers Groups Revised Caldicott Manual – November 2008.
Securing Corporate Email & Documents Richard Elphick Titus Labs.

Securing Corporate & Documents Richard Elphick Titus Labs.
BRC Storage & Distribution Safety and Quality Management System Training Guide www.brcfoodsafety.com.

BRC Storage & Distribution Safety and Quality Management System Training Guide
1 Question 5 : Are they well led? Supporting staff Temporary Staffing MAST Staff Appraisals.

1 Question 5 : Are they well led? Supporting staff Temporary Staffing MAST Staff Appraisals.
- 1 - Review of the Code of Practice for the Investigation of Family Violence Dr Kristin Diemer Professor Cathy Humphreys, Dr Lucy.

- 1 - Review of the Code of Practice for the Investigation of Family Violence Dr Kristin Diemer Professor Cathy Humphreys, Dr Lucy.
First Practice - Information Security Management System Implementation and ISO 27001 Certification.

First Practice - Information Security Management System Implementation and ISO Certification.
Pamela Simpson MCSP Moving And Handling Consultant.

Pamela Simpson MCSP Moving And Handling Consultant.
SHE Code 6: Risk Management Safety, Health and Environment (SHE) Group.

SHE Code 6: Risk Management Safety, Health and Environment (SHE) Group.

Similar presentations

Ads by Google