Measuring Privacy Maturity Across Government: A case study

Slides:

Advertisements

Similar presentations

NOTE: To change the image on this slide, select the picture and delete it. Then click the Pictures icon in the placeholde r to insert your own image. Cybersecurity.

Advertisements

Presented By: Thelma Ameyaw Security Management TEL2813 4/18/2008Thelma Ameyaw TEL2813.

Department of Internal Affairs Cloud computing considerations John Roberts Director, Relationship Management CRI Records Managers 11 June 2015.

Government of Canada Enterprise Licensing Agreement Framework Public Sector Chief Information Officer Council September 18, 2014 Benoît Long Senior Assistant.

Overview of NIPP 2013: Partnering for Critical Infrastructure Security and Resilience October 2013 DRAFT.

Extending functional leadership to Crown entities Decision & resolution process June 2014.

Recordkeeping Capability: Public Records Act Audit Programme Darrin Goulding, Project Manager, Public Records Act Audit Strategy Kate Jones, Senior Advisor,

December 14, 2011/Office of the NIH CIO Operational Analysis – What Does It Mean To The Project Manager? NIH Project Management Community of Excellence.

© International Vision Facilitation Committee Club Visioning Long Range Planning to Secure the Future of Rotary.

A Common Assessment Framework for Adults – Development 12 February 2008 Carl Evans Social Care, Local Government and Care Services Directorate Department.

Reporting, Monitoring and Evaluation Giovanni Rum, Chao Xing GEO Secretariat GEO Work Programme Symposium Geneva, 2-4 May 2016.

2 What’s in this presentation? We are seeking the board’s approval and advice on beginning a programme of work on culture and leadership across our trust.

IT Vendor Management March, 2015 Peter Baskette Pratike Patel.

JMFIP Financial Management Conference

Working Together to Safeguard Children 2013

Midland DHBs Board Development

Reporting, Monitoring and Evaluation

BruinTech Vendor Meet & Greet December 3, 2015

Niall Byrne, Deputy Director, Social Services

DATA COLLECTION METHODS IN NURSING RESEARCH

Evaluation of Priority Gender Equality

GEF Familiarization Seminar

The assessment process For Administrative units

One Person, One Digital Record Our Local Digital Roadmap Janet Fitzgerald Director of Corporate Governance.

IPv6 within the Australian Government

Safeguarding Conference 2013

The Role of Departments in the Implementation of the Government Agenda Concepts and Realities FMI Professional Development Day - June 7, 2016.

Federal Outlook for Security Products and Services

The Evolution of Regulation Comprehensive Area Assessment for local services 27 September 2007 Chief Fire and Rescue Officers’ Association Autumn Conference.

New Zealand Disability Strategy Prepared for the Japanese Young Core Leaders Programme Jacinda Keith.

Data Collection Mechanisms for ESD

APS Strategic Plan Steering Committee

Collective Impact Fall 2017.

Public Health England – Our progress under the Sendai Framework

9/16/2018 The ACT Government’s commitment to Performance and Accountability – the role of Evaluation Presentation to the Canberra Evaluation Forum Thursday,

Efcog Contractor assurance Working Group (CAWG) Update

Standards for success in city IT and construction projects

VERMONT INFORMATION TECHNOLOGY LEADERS

The evolution of caltrans research marketing

Working Group Five Indicators and Measurement: demonstrating and improving impact After deliberating the definition of "success" for a transparency regime,

Child Poverty (Scotland) Act

External Audit Core PFM Training Program Sanjay Vani

Generic Terms & Conditions Information Session

2500 companies 1 Global & 5 Regional Studies

International Workshop on the future of the CBD PoWPA, Jeju, 2009

Programme Management Board

Continuity Guidance Circular Webinar

Perspectives on Defense Cyber Issues

WHO Global Influenza Programme

Partnership Framework

Official Information Act 1982 (OIA)

Cybersecurity ATD technical

ICT Functional Leadership Government Information Group

Reinforcing Statistical Cooperation at the Regional Level to

Using Data to Monitor Title I, Part D

Engagement on the Comprehensive Funding Agreement

Person and Community Centred Approaches

Andrea Galgay December 2015

What is new in the Sphere Handbook 2018 and how to get benefit from it

Marleen De Smedt Geoffrey Thomas Cynthia Tavares

TPM/PBPP Implementation Timeline

Programme Management Board

MAARS Updates March2019.

Curriculum and Standards

International Relations Policy Framework

North Shore Streamkeepers February 23, 2019

Implementation Business Case

July 2011 Karen Oldham Department of Health

4th Meeting of the Expert Group on the Integration of Statistical and Geospatial Information (UN EG-ISGI) – Nov 2017 Summary of progress Martin Brady,

Agency Action Plan on Diversity and Inclusion Presentation to the Labour Management Consultation Committee (LMCC) October 3, 2017.

Presentation transcript:

Measuring Privacy Maturity Across Government: A case study Russell Burnard Government Chief Privacy Officer 15 December 2016

GCPO Timeline 2016 Results 2014 GCPO established 2012-14 Paving the way 2014 GCPO established 2015-16 First annual report 2016 Results 2017 -Continue to build resilient practices GCPO Timeline

Paving the way: 2012-2014 2012: GCIO conducted a Review of Publicly Accessible Information Systems 2013: Information Privacy and Security Programme established 2014: Government Chief Privacy Officer established under the GCIO all-of- government mandate. 2014: New Zealand Protective Security Requirements established .

2012-14 Paving the way 2014 GCPO established GCPO Timeline

2014 GCPO appointed Scope and Mandate Mandate Ensure a long-term focus on privacy management and building privacy capability across the State services Foundations Privacy Maturity Assessment Framework (PMAF) Core Expectations Report Annually to the Minister of State Services on system-wide capability; and how improvements are being leveraged to enable effective sharing and use of data and information for the broader benefit of government and New Zealanders. Scope and Mandate

GCPO Timeline 2014 GCPO established 2015-16 First annual report 2012-14 Paving the way 2014 GCPO established 2015-16 First annual report GCPO Timeline

Reporting Methodology Based on the PMAF and Core Expectations Self-assessment and target setting based on understanding of risks Encouraged tough realistic assessments rather than wishful thinking Goal: Establish a new baseline for future reporting

GCPO Timeline 2012-14 Paving the way 2014 GCPO established 2015-16 First annual report 2016 Results GCPO Timeline

2016 Results This graph depicts agency-defined current, short term (12 month) and long term (three to five years) privacy maturity targets in key indicators. Category 1: Agencies with a large and/or complex amount of personal information that may be held for different functions and purposes. Category 2: Agencies with a small amount of personal information, or information collected for single purpose. Category 3: District Health Boards.

GCPO Timeline 2012-14 Paving the way 2014 GCPO established 2015-16 First annual report 2016 Results 2017 -Continue to build resilient practices GCPO Timeline

2017 Onwards Continue to work with agencies to ensure ongoing improvements in system-wide capability and maturity in privacy Refine our work programmes based on analysis of the self-assessments Focus on information management and security in agencies with large and varied data sets, and the DHBs Incorporate Kiwis Count results to give the citizen perspective

References DIA NZSIS Report 2016 http://www.ssc.govt.nz/sites/all/files/State%20Services%20briefing%20to%20Minister%20Bennett.pdf GCPO Guidance & Resources including PMAF and Core Expectations https://www.ict.govt.nz/guidance-and-resources/privacy/ SSC Kiwis Count Survey http://www.ssc.govt.nz/kiwis-count Information Privacy and Security Programme: Final Report https://www.ssc.govt.nz/sites/all/files/SEC-15-SUB-0005.pdf GCIO Review of Publicly Accessible Systems: Summary of Findings December 2012 https://www.ssc.govt.nz/sites/all/files/gcio- review-publicly-accessible-systems.PDF

Questions? GCPO@DIA.GOVT.NZ