back to article UK.gov slammed by Parliamentary types for 'dysfunctional' infosec

A scathing parliamentary report into UK.gov’s infosec practices has called for the government to step up its efforts to protect Britain from cyber attacks in the face of today’s “chaotic” practices. The criticism is published today in the Public Accounts Committee’s report on Protecting Information Across Government, which …

  1. Anonymous Coward
    Anonymous Coward

    Nt going to happen..

    As long as they take on people at Cabinet Office who are more interested in politics than actually solving problems that's not going to happen. What they need is someone who doesn't consider the position a springboard to industry, but instead pay someone FROM industry a decent wage.

    But hey, that would be revolutionary - plus, it's hard to find someone sufficiently independent to do the job, but skilled enough to pull all the other mainly political players along as well.

  2. Anonymous Coward
    Anonymous Coward

    I'd get fired for sharing this.

    I've worked in the public sector for a few years, prior to that I worked in the private sector. Got to say people are the same, intentions are usually the same too - protect our data. The major difference seems that now that I'm in the NHS they are FAR more likely to put their hands up and say to the ICO "we done balls up bro". There's so little hiding of mistakes, problems it's very refreshing and these are the suppose useless middle managers people love to hate.

    In the past few years I've seen huge improvements locally partly due to this attitude, our managers alert the ICO when there's a problem and use that to leverage funding for improvements to information security. It's a good strategy and works well, right up until there's an incident at national level.

    Then we're asked to provide information which is completely irrelevant to the breach, produce reports which are focused entirely on NOT fixing it but are all about giving ministers stats they can use to fend off attacks from the press and the opposition parties. There's more fiddling and messing about with the organisation but never new funds, perhaps recycled funds, but it's never sent to fix the problem, it's sent to fix the PERCEIVED problem from the ministers perspective which is rarely the same thing and is typically covering their arses so they can say they did X, Y or Z if asked again.

    We dont' work in a silo, we share a lot of information, advice and even staff time with other NHS bodies who neighbour us or who we routinely share information with - I'd argue we do it in a more consistent, measured and targeted way than national procurement etc could ever do. I've yet to see one project run nationally on information security that was a fraction as effective as those done at local levels for less money and run by a local IS professional. It's guaranteed that the instant a politician gets involved though money will be redirected, projects scrapped (some with money already spent on infrastructure which is now less than ideal for any alternate use) etc.

  3. Anonymous Coward
    Anonymous Coward

    IT illiterate rule on IT literacy

    Bodes well for the nation.

  4. Anonymous Coward
    Anonymous Coward

    Dont worry

    The internet is ok,

    No need to bother with private accredited government networks anymore.

    https://governmenttechnology.blog.gov.uk/2017/01/20/the-internet-is-ok/

  5. John Smith 19 Gold badge
    FAIL

    little oversight of the costs and performance of government information assurance projects

    And yet the amount of information HMG wants people to give up continues to rise.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019