This snapshot taken on 05/09/2007, shows web content selected for preservation by The National Archives. External links, forms and search boxes may not work in archived websites.
Last updated: 20/7/2007
Risk management is an area in which government is well accustomed. However, for a government enabled by technology, the application of traditional information risk management modules is not always adequate. Online services, as well as many back–office systems, share a common vulnerability: the Internet. With the introduction of shared services and online public services available through a number of government web portals the establishment of trust between organisations is essential. In addition, government must do its utmost to ensure that the customer’s online experience with government is as user-friendly as possible. The security needs to be there – but be invisible to the consumer.
The CSIA has produced guidance on Identity Risk Management [PDF, 841KB] to help government organisations establish their level of risk and determine the processes which need to be put in place to adequately manage that risk. The CSIA Risk Analysis tool:Introductory Guide [PDF, 364KB] will guide you through the process of: identifying which level a particular service is; selecting the appropriate risk management processes; confirming the residual risk faced by your organisations, and; whether or not your organisation is a ‘special case’ and how to go about assessing what level you should be at. The Risk Tool is currently being piloted to local authorities through the Government Connect Programme and will be made more widely available following the pilot.