|
|||||||||
|
| You are here: CESG > Products and Services >IACS > | |||||||||||||
|
HMG
IA Maturity Model This page provides a portal to information in support of the HMG IA Maturity Model (IAMM) (pdf) and supporting guidance. As part of assisting organisations' boards to progress towards the broad outcomes of the National IA Strategy, and particularly the mandatory and other measures set out in the Data Handling Review, this IAMM has been created. It is supported by the Information Assurance Assessment Framework (IAAF), which is designed to assist an independent review of progress against the IAMM within an organisation. In its turn, this review will assist organisational boards to report ongoing improvements in their Information Assurance and Information Risk Management postures in their annual reports to Cabinet Office. Additional guidance will be provided here over the coming months, noted under What's New below. Enquiries from organisations interested in pursuing assessments using the IAMM and IAAF should contact the CESG enquiries line in the first instance. What's New 15.30hrs Wednesday 15th April 2009: The Cabinet Office Information Risk Reporting tool (xls) is now available for download. This is the spreadsheet that will be used by the CESG Team member when conducting a Supported Self-Assessment. In the event of problems is using or interpreting this tool, please contact CESG via the enquiries desk in the first instance. 10.30hrs Friday 27th March 2009: The CO Information Risk Reporting Tool has now been completed and is available at version 3.0. This is the version that will be used during the forthcoming reporting period. For the present, requests for copies should be directed to the CESG enquiries desk. The CO guidelines will be issued separately by close of play 1 April 2009. 14.00hrs Monday 23rd February 2009: Version 2.0 of the HMG IA Maturity Model (pdf) is now available. This incorporates the DHR requirements, and the Information requirements set out in SPF Security Policy No.4. The FY08/09 Annual Information Risk Report to Cabinet Office requirement strongly recommends the use of IA Supported Self Assessment. The Supported Self Assessment (pdf) provides details of this procedure, and details of the service offered from CESG to assist departments in undertaking the assessment. There is a Request Form (doc) available for customers to initiate the process of securing CESG support for this service. For further information? For all other enquiries please contact: The Customer Support Office |
||||||||||||
 |
|||
|