SlideShare a Scribd company logo

Security radar for 2014

Download as PPTX, PDF
Eduserv
Eduserv

A talk delivered by Ivan Harris at the London G-Cloud meet-up, January 2014. Topics covered: • Government security classifications • PSN connectivity • Hybrid clouds • Application development

Technology
1 of 8
Security Radar for 2014 London G-Cloud Meet-up, January 2014 Ivan Harris, Business Manager – Cloud Services www.eduserv.org.uk
Agenda • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
Government Security Classifications • Comes into force on 02/04/14 • Classifications: OFFICIAL, SECRET and TOP SECRET • There is no direct mapping between Security Classifications and BILs • BIL should still be used as part of the information risk assessment when selecting G-Cloud services • New G-Cloud service categories: • Unassured Clouds: Formerly IL0 • Assured Public Cloud: Formerly IL2 • Formally Accredited Public Cloud or Private Cloud: Formerly IL3 • As a rule of thumb: • Unassured Clouds: For non-sensitive OFFICIAL information suitable for the public domain • Assured Public Cloud: Suitable for general OFFICIAL information that is not particularly sensitive • Formally Accredited Public Cloud or Private Cloud: Most OFFICIAL information and aggregated information that‟s not particularly sensitive in isolation • Will Assured Public Clouds require PGA? Just ISO 27001 plus additional controls? Sources: Government Security Classifications April 2014, Version 1.0, Cabinet Office, October 2013 G-Cloud Information Assurance Requirements and Guidance, HMG, May 2012
PSN Connectivity • GCF connectivity is retired on 31/03/14 • GCF users must have obtained PSN connectivity, achieved compliance and transitioned by this date • IL3 accredited PSN bearer networks will start to appear rather than using CAPS accredited devices over IL2 bearer networks • 3 new PSN frameworks due with • More SMEs (dozens, not hundreds) • Three ordering mechanisms (direct award, short competition, full-fat competitions) • 4-5 year contract length • „Public Sector Telecoms‟ framework (which includes cloud services) due to go live in July • 2014-16 growth in „Wider Public Sector‟ including local government and health services: • PSN Spend to mid-2014: Central Government £2.2Bn, Wider Public Sector: £0.8Bn • PSN Spend 2014-2016: Central Government £0.6Bn, Wider Public Sector: £1.6Bn Sources: Next-generation PSN Frameworks, Cabinet Office, November 2013
Hybrid Cloud • Low hanging fruit of point cloud solutions will soon be harvested • More sophisticated solutions will be needed to support: • On premise and off premise • Legacy systems and cloud services • Public and private cloud • Multi-impact level information estates • Integrating to multi-impact level systems • Impact level hybrid clouds are needed • Supports the business benefit prioritized cloud journey and optimises information estates
Application Development • The „Public Cloud First‟ policy, drives for better citizen experience/engagement and more sophisticated solutions require digital services, Enterprise Applications Integration, SaaS and custom web, enterprise mobile applications • Demand from third-party application developers for IaaS, PaaS, EPaaS and PSN support on IL2 and IL3 PGA‟d services • Full software lifecycle support is needed: Spin-up/tear-down of development, test, staging and production environments • Needs to align to HMG‟s Agile objectives by supporting continuous integration and continuous release • Application developers need help with accrediting their applications on already PGA‟d services
In Summary • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
“In the midst of chaos, there is also opportunity” Sun Tzu Ivan Harris Business Manager – Cloud Services Email: ivan.harris@eduserv.org.uk Phone: 01225 474311 Twitter: @IvanDavidHarris

Recommended

Ivan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK MeetupIvan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK Meetup
WeAreEsynergy
 
Cooperation SIG AGM Report
Cooperation SIG AGM ReportCooperation SIG AGM Report
Cooperation SIG AGM Report
APNIC
 
CNNIC Update
CNNIC UpdateCNNIC Update
CNNIC Update
APNIC
 
Vodafone uk product on a page
Vodafone uk product on a pageVodafone uk product on a page
Vodafone uk product on a page
RossSurplice
 
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Department for Communities and Local Government Local Digital Campaign
 
Overview of Brocade's products and services
Overview of Brocade's products and servicesOverview of Brocade's products and services
Overview of Brocade's products and services
Yue-Hua (Cindy) Liu
 
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoTFIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE
 
The Future Of the Internet
The Future Of the Internet The Future Of the Internet
The Future Of the Internet
Dr Nikolaus Eberl | Motivational Intelligence
 

Recommended

Ivan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK MeetupIvan Harris G-Cloud UK Meetup
Ivan Harris G-Cloud UK Meetup
WeAreEsynergy
 
Cooperation SIG AGM Report
Cooperation SIG AGM ReportCooperation SIG AGM Report
Cooperation SIG AGM Report
APNIC
 
CNNIC Update
CNNIC UpdateCNNIC Update
CNNIC Update
APNIC
 
Vodafone uk product on a page
Vodafone uk product on a pageVodafone uk product on a page
Vodafone uk product on a page
RossSurplice
 
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Informatics & Digital Priorities for Social Care 2016/17 - 2020 | Andrew Fen...
Department for Communities and Local Government Local Digital Campaign
 
Overview of Brocade's products and services
Overview of Brocade's products and servicesOverview of Brocade's products and services
Overview of Brocade's products and services
Yue-Hua (Cindy) Liu
 
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoTFIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE Tech Summit - FIWARE Connecting to IoT
FIWARE
 
The Future Of the Internet
The Future Of the Internet The Future Of the Internet
The Future Of the Internet
Dr Nikolaus Eberl | Motivational Intelligence
 
EclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things NetworkEclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things Network
Johan Stokking
 
2016 Network Security Outlook
2016 Network Security Outlook2016 Network Security Outlook
2016 Network Security Outlook
Western NRG
 
One year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloudOne year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloud
OVHcloud
 
Picnic 2011
Picnic 2011Picnic 2011
Picnic 2011
Arnold Koning
 
InnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivityInnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivity
Thibault Cantegrel
 
Delivering the IoT ecosystem
Delivering the IoT ecosystemDelivering the IoT ecosystem
Delivering the IoT ecosystem
Telefónica IoT
 
IoT Security
IoT SecurityIoT Security
IoT Security
Peter Waher
 
Identity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth MayIdentity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth May
ForgeRock
 
Securing Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The CustomerSecuring Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The Customer
Datapipe
 
BT "cloud of clouds" vision
BT "cloud of clouds" visionBT "cloud of clouds" vision
BT "cloud of clouds" vision
Marco Verzellino
 
BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015
Jon Flack
 
State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014
Digital Realty
 
Workplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) InitiativeWorkplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) Initiative
KBIZEAU
 
Government innovation through cloud computing arthur riel
Government innovation through cloud computing arthur rielGovernment innovation through cloud computing arthur riel
Government innovation through cloud computing arthur riel
E-Government Center Moldova
 
130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06
Michael Burian
 
Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017
Sohaib Mahmood
 
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
solgenia
 
Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015
Mustafa Kuğu
 
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
goranvranic
 
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docxF E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
mydrynan
 
g-cloud vision
g-cloud visiong-cloud vision
g-cloud vision
putinvn
 
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In NepalCyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
ICT Frame Magazine Pvt. Ltd.
 

More Related Content

What's hot

EclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things NetworkEclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things Network
Johan Stokking
 

What's hot (7)

EclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things NetworkEclipseCon NA 2016: The Things Network
EclipseCon NA 2016: The Things Network
 
2016 Network Security Outlook
2016 Network Security Outlook2016 Network Security Outlook
2016 Network Security Outlook
 
One year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloudOne year later… Revisiting the GDPR and what it means for the cloud
One year later… Revisiting the GDPR and what it means for the cloud
 
Picnic 2011
Picnic 2011Picnic 2011
Picnic 2011
 
InnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivityInnovationSummit2015 - iot connectivity
InnovationSummit2015 - iot connectivity
 
Delivering the IoT ecosystem
Delivering the IoT ecosystemDelivering the IoT ecosystem
Delivering the IoT ecosystem
 
IoT Security
IoT SecurityIoT Security
IoT Security
 

Similar to Security radar for 2014

BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015
Jon Flack
 
Government innovation through cloud computing arthur riel
Government innovation through cloud computing arthur rielGovernment innovation through cloud computing arthur riel
Government innovation through cloud computing arthur riel
E-Government Center Moldova
 
130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06
Michael Burian
 
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
solgenia
 
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docxF E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
mydrynan
 
g-cloud vision
g-cloud visiong-cloud vision
g-cloud vision
putinvn
 

Similar to Security radar for 2014 (20)

Identity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth MayIdentity Live London 2017 | Kenneth May
Identity Live London 2017 | Kenneth May
 
Securing Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The CustomerSecuring Your Business #4 - Role Of The Customer
Securing Your Business #4 - Role Of The Customer
 
BT "cloud of clouds" vision
BT "cloud of clouds" visionBT "cloud of clouds" vision
BT "cloud of clouds" vision
 
BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015BTGSCloudofCloudsvisionwebcastslides03062015
BTGSCloudofCloudsvisionwebcastslides03062015
 
State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014State of the Cloud and Data Centers 2014
State of the Cloud and Data Centers 2014
 
Workplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) InitiativeWorkplace Technology Devices (WTD) Initiative
Workplace Technology Devices (WTD) Initiative
 
Government innovation through cloud computing arthur riel
Government innovation through cloud computing arthur rielGovernment innovation through cloud computing arthur riel
Government innovation through cloud computing arthur riel
 
130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06130424 bitkom ucc_cloud_v06
130424 bitkom ucc_cloud_v06
 
Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017Securing Data in the Cloud - GISEC2017
Securing Data in the Cloud - GISEC2017
 
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
Solgenia - Powua Cloud Management and Cloud Monetization for Governments and ...
 
Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015Telenity CANVAS API MANAGER Product Presentation 2015
Telenity CANVAS API MANAGER Product Presentation 2015
 
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
Berislav Biočić, HP SEE: “HP Cloud za e-Poslovanje”
 
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docxF E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
F E B R U A R Y 8 , 2 0 1 1Vivek Kundra U.S. Chief Inf.docx
 
g-cloud vision
g-cloud visiong-cloud vision
g-cloud vision
 
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In NepalCyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
Cyber Security Practices and Future Plan: Real Scenario in ISPs In Nepal
 
Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...
Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...
Bb Education on Tour | Cloud Services | Glenn Philpott, Director, Education S...
 
Open Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
Open Data e Smart Government: tecnologie e trend di mercato Alessio MeloniOpen Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
Open Data e Smart Government: tecnologie e trend di mercato Alessio Meloni
 
Modelli di interoperabilità in un hybrid cloud environment
Modelli di interoperabilità in un hybrid cloud environmentModelli di interoperabilità in un hybrid cloud environment
Modelli di interoperabilità in un hybrid cloud environment
 
The Data Center of the Future: The New IP - Phil O'Reilly
The Data Center of the Future: The New IP - Phil O'ReillyThe Data Center of the Future: The New IP - Phil O'Reilly
The Data Center of the Future: The New IP - Phil O'Reilly
 
Privacy and the GDPR: How Cloud computing could be your failing
Privacy and the GDPR: How Cloud computing could be your failingPrivacy and the GDPR: How Cloud computing could be your failing
Privacy and the GDPR: How Cloud computing could be your failing
 

More from Eduserv

Is cloud the right fit for your needs?
Is cloud the right fit for your needs?Is cloud the right fit for your needs?
Is cloud the right fit for your needs?
Eduserv
 

More from Eduserv (20)

Phase two of OpenAthens SP evolution including OpenID connect option
Phase two of OpenAthens SP evolution including OpenID connect optionPhase two of OpenAthens SP evolution including OpenID connect option
Phase two of OpenAthens SP evolution including OpenID connect option
 
Partnership Licensing - allowing access to licensed resources
Partnership Licensing - allowing access to licensed resources Partnership Licensing - allowing access to licensed resources
Partnership Licensing - allowing access to licensed resources
 
Lightning talk - EBSCO
Lightning talk - EBSCOLightning talk - EBSCO
Lightning talk - EBSCO
 
Lightning talk - Boopsie
Lightning talk - BoopsieLightning talk - Boopsie
Lightning talk - Boopsie
 
Lightning talk - Softlink
Lightning talk - SoftlinkLightning talk - Softlink
Lightning talk - Softlink
 
Lightning talk - Third Iron BrowZine
Lightning talk - Third Iron BrowZineLightning talk - Third Iron BrowZine
Lightning talk - Third Iron BrowZine
 
Lightning talk - Eduserv Chest Agreements
Lightning talk - Eduserv Chest AgreementsLightning talk - Eduserv Chest Agreements
Lightning talk - Eduserv Chest Agreements
 
Phase one of OpenAthens SP evolution
Phase one of OpenAthens SP evolutionPhase one of OpenAthens SP evolution
Phase one of OpenAthens SP evolution
 
Key considerations when mapping your end user experience
Key considerations when mapping your end user experienceKey considerations when mapping your end user experience
Key considerations when mapping your end user experience
 
Our product development methodology
Our product development methodologyOur product development methodology
Our product development methodology
 
How Readers Discover Content
How Readers Discover ContentHow Readers Discover Content
How Readers Discover Content
 
OpenAthens product update
OpenAthens product updateOpenAthens product update
OpenAthens product update
 
OpenAthens Customer Conference - Welcome address
OpenAthens Customer Conference - Welcome addressOpenAthens Customer Conference - Welcome address
OpenAthens Customer Conference - Welcome address
 
Generating leads with content marketing
Generating leads with content marketingGenerating leads with content marketing
Generating leads with content marketing
 
Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016
Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016
Pre-launch introduction to the new OpenAthens SP dashboard - 13/09/2016
 
Mobius from Maplesoft
Mobius from MaplesoftMobius from Maplesoft
Mobius from Maplesoft
 
QSR NVivo
QSR NVivo QSR NVivo
QSR NVivo
 
How Eduserv are helping local government organisations
How Eduserv are helping local government organisationsHow Eduserv are helping local government organisations
How Eduserv are helping local government organisations
 
Is cloud the right fit for your needs?
Is cloud the right fit for your needs?Is cloud the right fit for your needs?
Is cloud the right fit for your needs?
 
Planning your cloud strategy: Adur and Worthing Councils
Planning your cloud strategy: Adur and Worthing CouncilsPlanning your cloud strategy: Adur and Worthing Councils
Planning your cloud strategy: Adur and Worthing Councils
 

Recently uploaded

Strategic AI Integration in Engineering Teams
Strategic AI Integration in Engineering TeamsStrategic AI Integration in Engineering Teams
Strategic AI Integration in Engineering Teams
UXDXConf
 
The UX of Automation by AJ King, Senior UX Researcher, Ocado
The UX of Automation by AJ King, Senior UX Researcher, OcadoThe UX of Automation by AJ King, Senior UX Researcher, Ocado
The UX of Automation by AJ King, Senior UX Researcher, Ocado
UXDXConf
 
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
CzechDreamin
 
How we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdfHow we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdf
Srushith Repakula
 
A Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System StrategyA Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System Strategy
UXDXConf
 
Optimizing NoSQL Performance Through Observability
Optimizing NoSQL Performance Through ObservabilityOptimizing NoSQL Performance Through Observability
Optimizing NoSQL Performance Through Observability
ScyllaDB
 

Recently uploaded (20)

Custom Approval Process: A New Perspective, Pavel Hrbacek & Anindya Halder
Custom Approval Process: A New Perspective, Pavel Hrbacek & Anindya HalderCustom Approval Process: A New Perspective, Pavel Hrbacek & Anindya Halder
Custom Approval Process: A New Perspective, Pavel Hrbacek & Anindya Halder
 
Strategic AI Integration in Engineering Teams
Strategic AI Integration in Engineering TeamsStrategic AI Integration in Engineering Teams
Strategic AI Integration in Engineering Teams
 
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
 
Powerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara LaskowskaPowerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara Laskowska
 
IoT Analytics Company Presentation May 2024
IoT Analytics Company Presentation May 2024IoT Analytics Company Presentation May 2024
IoT Analytics Company Presentation May 2024
 
What's New in Teams Calling, Meetings and Devices April 2024
What's New in Teams Calling, Meetings and Devices April 2024What's New in Teams Calling, Meetings and Devices April 2024
What's New in Teams Calling, Meetings and Devices April 2024
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
 
WebAssembly is Key to Better LLM Performance
WebAssembly is Key to Better LLM PerformanceWebAssembly is Key to Better LLM Performance
WebAssembly is Key to Better LLM Performance
 
The UX of Automation by AJ King, Senior UX Researcher, Ocado
The UX of Automation by AJ King, Senior UX Researcher, OcadoThe UX of Automation by AJ King, Senior UX Researcher, Ocado
The UX of Automation by AJ King, Senior UX Researcher, Ocado
 
Intro in Product Management - Коротко про професію продакт менеджера
Intro in Product Management - Коротко про професію продакт менеджераIntro in Product Management - Коротко про професію продакт менеджера
Intro in Product Management - Коротко про професію продакт менеджера
 
SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...
SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...
SOQL 201 for Admins & Developers: Slice & Dice Your Org’s Data With Aggregate...
 
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
Choosing the Right FDO Deployment Model for Your Application _ Geoffrey at In...
 
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
 
Top 10 Symfony Development Companies 2024
Top 10 Symfony Development Companies 2024Top 10 Symfony Development Companies 2024
Top 10 Symfony Development Companies 2024
 
Free and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi IbrahimzadeFree and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
 
How we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdfHow we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdf
 
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdfSimplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
 
FDO for Camera, Sensor and Networking Device – Commercial Solutions from VinC...
FDO for Camera, Sensor and Networking Device – Commercial Solutions from VinC...FDO for Camera, Sensor and Networking Device – Commercial Solutions from VinC...
FDO for Camera, Sensor and Networking Device – Commercial Solutions from VinC...
 
A Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System StrategyA Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System Strategy
 
Optimizing NoSQL Performance Through Observability
Optimizing NoSQL Performance Through ObservabilityOptimizing NoSQL Performance Through Observability
Optimizing NoSQL Performance Through Observability
 

Security radar for 2014

  • 1. Security Radar for 2014 London G-Cloud Meet-up, January 2014 Ivan Harris, Business Manager – Cloud Services www.eduserv.org.uk
  • 2. Agenda • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
  • 3. Government Security Classifications • Comes into force on 02/04/14 • Classifications: OFFICIAL, SECRET and TOP SECRET • There is no direct mapping between Security Classifications and BILs • BIL should still be used as part of the information risk assessment when selecting G-Cloud services • New G-Cloud service categories: • Unassured Clouds: Formerly IL0 • Assured Public Cloud: Formerly IL2 • Formally Accredited Public Cloud or Private Cloud: Formerly IL3 • As a rule of thumb: • Unassured Clouds: For non-sensitive OFFICIAL information suitable for the public domain • Assured Public Cloud: Suitable for general OFFICIAL information that is not particularly sensitive • Formally Accredited Public Cloud or Private Cloud: Most OFFICIAL information and aggregated information that‟s not particularly sensitive in isolation • Will Assured Public Clouds require PGA? Just ISO 27001 plus additional controls? Sources: Government Security Classifications April 2014, Version 1.0, Cabinet Office, October 2013 G-Cloud Information Assurance Requirements and Guidance, HMG, May 2012
  • 4. PSN Connectivity • GCF connectivity is retired on 31/03/14 • GCF users must have obtained PSN connectivity, achieved compliance and transitioned by this date • IL3 accredited PSN bearer networks will start to appear rather than using CAPS accredited devices over IL2 bearer networks • 3 new PSN frameworks due with • More SMEs (dozens, not hundreds) • Three ordering mechanisms (direct award, short competition, full-fat competitions) • 4-5 year contract length • „Public Sector Telecoms‟ framework (which includes cloud services) due to go live in July • 2014-16 growth in „Wider Public Sector‟ including local government and health services: • PSN Spend to mid-2014: Central Government £2.2Bn, Wider Public Sector: £0.8Bn • PSN Spend 2014-2016: Central Government £0.6Bn, Wider Public Sector: £1.6Bn Sources: Next-generation PSN Frameworks, Cabinet Office, November 2013
  • 5. Hybrid Cloud • Low hanging fruit of point cloud solutions will soon be harvested • More sophisticated solutions will be needed to support: • On premise and off premise • Legacy systems and cloud services • Public and private cloud • Multi-impact level information estates • Integrating to multi-impact level systems • Impact level hybrid clouds are needed • Supports the business benefit prioritized cloud journey and optimises information estates
  • 6. Application Development • The „Public Cloud First‟ policy, drives for better citizen experience/engagement and more sophisticated solutions require digital services, Enterprise Applications Integration, SaaS and custom web, enterprise mobile applications • Demand from third-party application developers for IaaS, PaaS, EPaaS and PSN support on IL2 and IL3 PGA‟d services • Full software lifecycle support is needed: Spin-up/tear-down of development, test, staging and production environments • Needs to align to HMG‟s Agile objectives by supporting continuous integration and continuous release • Application developers need help with accrediting their applications on already PGA‟d services
  • 7. In Summary • Government Security Classifications • PSN Connectivity • Hybrid Clouds • Application Development
  • 8. “In the midst of chaos, there is also opportunity” Sun Tzu Ivan Harris Business Manager – Cloud Services Email: ivan.harris@eduserv.org.uk Phone: 01225 474311 Twitter: @IvanDavidHarris