Outputs
IT Strategy
A comprehensive and objective assessment of your current IT estate.
- Reviewing any existing documentation, for example policies, existing strategies (business and IT if they exist)
- Running an automated scan across the local network. This identifies assets currently connected to the network and may identify potential vulnerabilities
- Interviews with key stakeholders and departments about their role in the business, their issues and needs. It can also be useful to see any key systems they use including any Cloud services
- A physical audit of sites and server rooms if possible
Outputs
Business Continuity
Keeping things going when the lights go out.
- Role based response to business continuity where defined roles have explicit owners and explicit responsibilities
- Review business functions/services & infrastructure to identify critical/important elements
- Define roles and responsibilities with Role Owners
- Define response procedures and communication channels
- Guidance, training and practice
- More practice
Outputs
Information Governance
Improving awareness of the risks and protecting your systems.
- Reviewing any existing policies, existing strategies (business and IT if they exist)
- A full audit of key systems with a view to human vulnerabilities and policy gaps
- Information flow analyses and mapping
- Interviews with key stakeholders and departments about how they use information
- Drafting clear and understandable policies and guidance
- A physical audit of sites and server rooms if possible
Outputs
Virtual Information Officer.
All of the above on an ongoing basis.
- Regular access to a director level Information Officer who has a focus on keeping your organisation secure, up-to-date and extracting maximum value from your IT
- Contract/supplier management including assurance reporting and procurement support
- Annual updates and refreshes of strategy, business continuity plan and IT policies
- Leading or supporting compliance programmes