SlideShare uma empresa Scribd logo

Security radar for 2014

Transferir como PPTX, PDF
Eduserv
Eduserv

A talk delivered by Ivan Harris at the London G-Cloud meet-up, January 2014. Topics covered: • Government security classifications • PSN connectivity • Hybrid clouds • Application development

Tecnologia
1 de 8
Security Radar for 2014 London G-Cloud Meet-up, January 2014 Ivan Harris, Business Manager – Cloud Services www.eduserv.org.uk
Agenda • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
Government Security Classifications • Comes into force on 02/04/14 • Classifications: OFFICIAL, SECRET and TOP SECRET • There is no direct mapping between Security Classifications and BILs • BIL should still be used as part of the information risk assessment when selecting G-Cloud services • New G-Cloud service categories: • Unassured Clouds: Formerly IL0 • Assured Public Cloud: Formerly IL2 • Formally Accredited Public Cloud or Private Cloud: Formerly IL3 • As a rule of thumb: • Unassured Clouds: For non-sensitive OFFICIAL information suitable for the public domain • Assured Public Cloud: Suitable for general OFFICIAL information that is not particularly sensitive • Formally Accredited Public Cloud or Private Cloud: Most OFFICIAL information and aggregated information that‟s not particularly sensitive in isolation • Will Assured Public Clouds require PGA? Just ISO 27001 plus additional controls? Sources: Government Security Classifications April 2014, Version 1.0, Cabinet Office, October 2013 G-Cloud Information Assurance Requirements and Guidance, HMG, May 2012
PSN Connectivity • GCF connectivity is retired on 31/03/14 • GCF users must have obtained PSN connectivity, achieved compliance and transitioned by this date • IL3 accredited PSN bearer networks will start to appear rather than using CAPS accredited devices over IL2 bearer networks • 3 new PSN frameworks due with • More SMEs (dozens, not hundreds) • Three ordering mechanisms (direct award, short competition, full-fat competitions) • 4-5 year contract length • „Public Sector Telecoms‟ framework (which includes cloud services) due to go live in July • 2014-16 growth in „Wider Public Sector‟ including local government and health services: • PSN Spend to mid-2014: Central Government £2.2Bn, Wider Public Sector: £0.8Bn • PSN Spend 2014-2016: Central Government £0.6Bn, Wider Public Sector: £1.6Bn Sources: Next-generation PSN Frameworks, Cabinet Office, November 2013
Hybrid Cloud • Low hanging fruit of point cloud solutions will soon be harvested • More sophisticated solutions will be needed to support: • On premise and off premise • Legacy systems and cloud services • Public and private cloud • Multi-impact level information estates • Integrating to multi-impact level systems • Impact level hybrid clouds are needed • Supports the business benefit prioritized cloud journey and optimises information estates
Application Development • The „Public Cloud First‟ policy, drives for better citizen experience/engagement and more sophisticated solutions require digital services, Enterprise Applications Integration, SaaS and custom web, enterprise mobile applications • Demand from third-party application developers for IaaS, PaaS, EPaaS and PSN support on IL2 and IL3 PGA‟d services • Full software lifecycle support is needed: Spin-up/tear-down of development, test, staging and production environments • Needs to align to HMG‟s Agile objectives by supporting continuous integration and continuous release • Application developers need help with accrediting their applications on already PGA‟d services
In Summary • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
“In the midst of chaos, there is also opportunity” Sun Tzu Ivan Harris Business Manager – Cloud Services Email: ivan.harris@eduserv.org.uk Phone: 01225 474311 Twitter: @IvanDavidHarris

Recomendados

Ivan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK MeetupIvan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK Meetup
WeAreEsynergy
 
Cooperation SIG AGM Report
Cooperation SIG AGM ReportCooperation SIG AGM Report
Cooperation SIG AGM Report
APNIC
 
CNNIC Update
CNNIC UpdateCNNIC Update
CNNIC Update
APNIC
 
Vodafone uk product on a page
Vodafone uk product on a pageVodafone uk product on a page
Vodafone uk product on a page
RossSurplice
 
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Department for Communities and Local Government Local Digital Campaign
 
Overview of Brocade's products and services
Overview of Brocade's products and servicesOverview of Brocade's products and services
Overview of Brocade's products and services
Yue-Hua (Cindy) Liu
 
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoTFIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE
 
The Future Of the Internet
The Future Of the Internet The Future Of the Internet
The Future Of the Internet
Dr Nikolaus Eberl | Motivational Intelligence
 

Recomendados

Ivan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK MeetupIvan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK Meetup
WeAreEsynergy
 
Cooperation SIG AGM Report
Cooperation SIG AGM ReportCooperation SIG AGM Report
Cooperation SIG AGM Report
APNIC
 
CNNIC Update
CNNIC UpdateCNNIC Update
CNNIC Update
APNIC
 
Vodafone uk product on a page
Vodafone uk product on a pageVodafone uk product on a page
Vodafone uk product on a page
RossSurplice
 
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Department for Communities and Local Government Local Digital Campaign
 
Overview of Brocade's products and services
Overview of Brocade's products and servicesOverview of Brocade's products and services
Overview of Brocade's products and services
Yue-Hua (Cindy) Liu
 
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoTFIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE
 
The Future Of the Internet
The Future Of the Internet The Future Of the Internet
The Future Of the Internet
Dr Nikolaus Eberl | Motivational Intelligence
 
EclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things NetworkEclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things Network
Johan Stokking
 
2016 Network Security Outlook
2016 Network Security Outlook2016 Network Security Outlook
2016 Network Security Outlook
Western NRG
 
One year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloudOne year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloud
OVHcloud
 
Picnic 2011
Picnic 2011Picnic 2011
Picnic 2011
Arnold Koning
 
InnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivityInnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivity
Thibault Cantegrel
 
Delivering the IoT ecosystem
Delivering the IoT ecosystemDelivering the IoT ecosystem
Delivering the IoT ecosystem
Telefónica IoT
 
IoT Security
IoT SecurityIoT Security
IoT Security
Peter Waher
 
Identity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth MayIdentity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth May
ForgeRock
 
Securing Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The CustomerSecuring Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The Customer
Datapipe
 
BT "cloud of clouds" vision
BT "cloud of clouds" visionBT "cloud of clouds" vision
BT "cloud of clouds" vision
Marco Verzellino
 
BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015
Jon Flack
 
State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014
Digital Realty
 
Workplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) InitiativeWorkplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) Initiative
KBIZEAU
 
Government innovation through cloud computing arthur riel
Government innovation through cloud computing arthur rielGovernment innovation through cloud computing arthur riel
Government innovation through cloud computing arthur riel
E-Government Center Moldova
 
130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06
Michael Burian
 
Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017
Sohaib Mahmood
 
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
solgenia
 
Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015
Mustafa Kuğu
 
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
goranvranic
 
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docxF E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
mydrynan
 
g-cloud vision
g-cloud visiong-cloud vision
g-cloud vision
putinvn
 
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In NepalCyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
ICT Frame Magazine Pvt. Ltd.
 

Mais conteúdo relacionado

Mais procurados

EclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things NetworkEclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things Network
Johan Stokking
 

Mais procurados (7)

EclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things NetworkEclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things Network
 
2016 Network Security Outlook
2016 Network Security Outlook2016 Network Security Outlook
2016 Network Security Outlook
 
One year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloudOne year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloud
 
Picnic 2011
Picnic 2011Picnic 2011
Picnic 2011
 
InnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivityInnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivity
 
Delivering the IoT ecosystem
Delivering the IoT ecosystemDelivering the IoT ecosystem
Delivering the IoT ecosystem
 
IoT Security
IoT SecurityIoT Security
IoT Security
 

Semelhante a Security radar for 2014

BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015
Jon Flack
 
Government innovation through cloud computing arthur riel
Government innovation through cloud computing arthur rielGovernment innovation through cloud computing arthur riel
Government innovation through cloud computing arthur riel
E-Government Center Moldova
 
130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06
Michael Burian
 
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
solgenia
 
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docxF E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
mydrynan
 
g-cloud vision
g-cloud visiong-cloud vision
g-cloud vision
putinvn
 

Semelhante a Security radar for 2014 (20)

Identity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth MayIdentity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth May
 
Securing Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The CustomerSecuring Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The Customer
 
BT "cloud of clouds" vision
BT "cloud of clouds" visionBT "cloud of clouds" vision
BT "cloud of clouds" vision
 
BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015
 
State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014
 
Workplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) InitiativeWorkplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) Initiative
 
Government innovation through cloud computing arthur riel
Government innovation through cloud computing arthur rielGovernment innovation through cloud computing arthur riel
Government innovation through cloud computing arthur riel
 
130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06
 
Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017
 
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
 
Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015
 
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
 
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docxF E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
 
g-cloud vision
g-cloud visiong-cloud vision
g-cloud vision
 
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In NepalCyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
 
Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...
Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...
Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...
 
Open Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
Open Data e Smart Government: tecnologie e trend di mercato Alessio MeloniOpen Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
Open Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
 
Modelli di interoperabilità in un hybrid cloud environment
Modelli di interoperabilità in un hybrid cloud environmentModelli di interoperabilità in un hybrid cloud environment
Modelli di interoperabilità in un hybrid cloud environment
 
The Data Center of the Future: The New IP - Phil O'Reilly
The Data Center of the Future: The New IP - Phil O'ReillyThe Data Center of the Future: The New IP - Phil O'Reilly
The Data Center of the Future: The New IP - Phil O'Reilly
 
Privacy and the GDPR: How Cloud computing could be your failing
Privacy and the GDPR: How Cloud computing could be your failingPrivacy and the GDPR: How Cloud computing could be your failing
Privacy and the GDPR: How Cloud computing could be your failing
 

Mais de Eduserv

Is cloud the right fit for your needs?
Is cloud the right fit for your needs?Is cloud the right fit for your needs?
Is cloud the right fit for your needs?
Eduserv
 

Mais de Eduserv (20)

Phase two of OpenAthens SP evolution including OpenID connect option
Phase two of OpenAthens SP evolution including OpenID connect optionPhase two of OpenAthens SP evolution including OpenID connect option
Phase two of OpenAthens SP evolution including OpenID connect option
 
Partnership Licensing - allowing access to licensed resources
Partnership Licensing - allowing access to licensed resources Partnership Licensing - allowing access to licensed resources
Partnership Licensing - allowing access to licensed resources
 
Lightning talk - EBSCO
Lightning talk - EBSCOLightning talk - EBSCO
Lightning talk - EBSCO
 
Lightning talk - Boopsie
Lightning talk - BoopsieLightning talk - Boopsie
Lightning talk - Boopsie
 
Lightning talk - Softlink
Lightning talk - SoftlinkLightning talk - Softlink
Lightning talk - Softlink
 
Lightning talk - Third Iron BrowZine
Lightning talk - Third Iron BrowZineLightning talk - Third Iron BrowZine
Lightning talk - Third Iron BrowZine
 
Lightning talk - Eduserv Chest Agreements
Lightning talk - Eduserv Chest AgreementsLightning talk - Eduserv Chest Agreements
Lightning talk - Eduserv Chest Agreements
 
Phase one of OpenAthens SP evolution
Phase one of OpenAthens SP evolutionPhase one of OpenAthens SP evolution
Phase one of OpenAthens SP evolution
 
Key considerations when mapping your end user experience
Key considerations when mapping your end user experienceKey considerations when mapping your end user experience
Key considerations when mapping your end user experience
 
Our product development methodology
Our product development methodologyOur product development methodology
Our product development methodology
 
How Readers Discover Content
How Readers Discover ContentHow Readers Discover Content
How Readers Discover Content
 
OpenAthens product update
OpenAthens product updateOpenAthens product update
OpenAthens product update
 
OpenAthens Customer Conference - Welcome address
OpenAthens Customer Conference - Welcome addressOpenAthens Customer Conference - Welcome address
OpenAthens Customer Conference - Welcome address
 
Generating leads with content marketing
Generating leads with content marketingGenerating leads with content marketing
Generating leads with content marketing
 
Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016
Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016
Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016
 
Mobius from Maplesoft
Mobius from MaplesoftMobius from Maplesoft
Mobius from Maplesoft
 
QSR NVivo
QSR NVivo QSR NVivo
QSR NVivo
 
How Eduserv are helping local government organisations
How Eduserv are helping local government organisationsHow Eduserv are helping local government organisations
How Eduserv are helping local government organisations
 
Is cloud the right fit for your needs?
Is cloud the right fit for your needs?Is cloud the right fit for your needs?
Is cloud the right fit for your needs?
 
Planning your cloud strategy: Adur and Worthing Councils
Planning your cloud strategy: Adur and Worthing CouncilsPlanning your cloud strategy: Adur and Worthing Councils
Planning your cloud strategy: Adur and Worthing Councils
 

Último

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Angeliki Cooney
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
WSO2
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 

Último (20)

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
Biography Of Angeliki Cooney | Senior Vice President Life Sciences | Albany, ...
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Six Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal OntologySix Myths about Ontologies: The Basics of Formal Ontology
Six Myths about Ontologies: The Basics of Formal Ontology
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 

Security radar for 2014

  • 1. Security Radar for 2014 London G-Cloud Meet-up, January 2014 Ivan Harris, Business Manager – Cloud Services www.eduserv.org.uk
  • 2. Agenda • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
  • 3. Government Security Classifications • Comes into force on 02/04/14 • Classifications: OFFICIAL, SECRET and TOP SECRET • There is no direct mapping between Security Classifications and BILs • BIL should still be used as part of the information risk assessment when selecting G-Cloud services • New G-Cloud service categories: • Unassured Clouds: Formerly IL0 • Assured Public Cloud: Formerly IL2 • Formally Accredited Public Cloud or Private Cloud: Formerly IL3 • As a rule of thumb: • Unassured Clouds: For non-sensitive OFFICIAL information suitable for the public domain • Assured Public Cloud: Suitable for general OFFICIAL information that is not particularly sensitive • Formally Accredited Public Cloud or Private Cloud: Most OFFICIAL information and aggregated information that‟s not particularly sensitive in isolation • Will Assured Public Clouds require PGA? Just ISO 27001 plus additional controls? Sources: Government Security Classifications April 2014, Version 1.0, Cabinet Office, October 2013 G-Cloud Information Assurance Requirements and Guidance, HMG, May 2012
  • 4. PSN Connectivity • GCF connectivity is retired on 31/03/14 • GCF users must have obtained PSN connectivity, achieved compliance and transitioned by this date • IL3 accredited PSN bearer networks will start to appear rather than using CAPS accredited devices over IL2 bearer networks • 3 new PSN frameworks due with • More SMEs (dozens, not hundreds) • Three ordering mechanisms (direct award, short competition, full-fat competitions) • 4-5 year contract length • „Public Sector Telecoms‟ framework (which includes cloud services) due to go live in July • 2014-16 growth in „Wider Public Sector‟ including local government and health services: • PSN Spend to mid-2014: Central Government £2.2Bn, Wider Public Sector: £0.8Bn • PSN Spend 2014-2016: Central Government £0.6Bn, Wider Public Sector: £1.6Bn Sources: Next-generation PSN Frameworks, Cabinet Office, November 2013
  • 5. Hybrid Cloud • Low hanging fruit of point cloud solutions will soon be harvested • More sophisticated solutions will be needed to support: • On premise and off premise • Legacy systems and cloud services • Public and private cloud • Multi-impact level information estates • Integrating to multi-impact level systems • Impact level hybrid clouds are needed • Supports the business benefit prioritized cloud journey and optimises information estates
  • 6. Application Development • The „Public Cloud First‟ policy, drives for better citizen experience/engagement and more sophisticated solutions require digital services, Enterprise Applications Integration, SaaS and custom web, enterprise mobile applications • Demand from third-party application developers for IaaS, PaaS, EPaaS and PSN support on IL2 and IL3 PGA‟d services • Full software lifecycle support is needed: Spin-up/tear-down of development, test, staging and production environments • Needs to align to HMG‟s Agile objectives by supporting continuous integration and continuous release • Application developers need help with accrediting their applications on already PGA‟d services
  • 7. In Summary • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
  • 8. “In the midst of chaos, there is also opportunity” Sun Tzu Ivan Harris Business Manager – Cloud Services Email: ivan.harris@eduserv.org.uk Phone: 01225 474311 Twitter: @IvanDavidHarris