Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Ark presentation


Published on

Published in: Technology, Education
  • Be the first to comment

  • Be the first to like this

Ark presentation

  1. 1. MOBILE DATA: HAS YOUR INFORMATION GONE WALKABOUT? Brent Carey Manager, Privacy Feedback & Projects Department of Justice
  2. 2. Overview – Our Story <ul><li>Briefly explain the department and its structure </li></ul><ul><li>Position the importance of data held on mobile devices from a privacy perspective </li></ul><ul><li>Mobile data Game Plan ( Case Study) </li></ul><ul><ul><li>Policies for Portable Devices </li></ul></ul><ul><ul><li>Security Measures 101 </li></ul></ul><ul><ul><li>Discovering the Value of data on Devices </li></ul></ul><ul><li>Questions </li></ul>
  3. 3. The Department <ul><li>2007-08 Budget: $3.15 billion </li></ul><ul><li>Responsible for 45% of Victorian Government’s 2007 legislative program </li></ul><ul><li>More than 5000 staff </li></ul><ul><li>Six ministerial portfolios </li></ul>
  4. 4. Positioning the relevance of data on mobile devices <ul><li>What’s the context? </li></ul><ul><ul><li>Enshrined right of access in privacy laws </li></ul></ul><ul><ul><li>Balance between full disclosure and privacy </li></ul></ul><ul><ul><li>Implied undertakings of confidentiality </li></ul></ul>
  5. 5. The issues
  6. 6. The Game Plan
  7. 7. One approach – Taking Responsibility
  8. 8. The success <ul><li>encryption process </li></ul>
  9. 9. Just when we thought it was safe – The ugly <ul><li>Unexpected </li></ul><ul><li>Coming without warning; unforseen </li></ul><ul><li>“ missing filing cabinet” </li></ul><ul><li>Houston we have problems </li></ul>
  10. 10. The Bad <ul><li>$$$ </li></ul><ul><li>Time </li></ul><ul><li>Coordination </li></ul><ul><li>Difficult decisions </li></ul>
  11. 11. Houston, We have a solution <ul><li>TR program </li></ul><ul><li>The launch </li></ul>
  12. 12. The Goof - Taking Responsibility program OVERVIEW <ul><li>The taking responsibility program is about supporting our people with: </li></ul><ul><ul><li>tools </li></ul></ul><ul><ul><li>training </li></ul></ul><ul><ul><li>communication </li></ul></ul><ul><ul><li>resources </li></ul></ul><ul><li>To ensure they know what to do to meet all their obligations on an ongoing daily basis </li></ul>
  13. 13. <ul><li>Making it easier for our people to understand what is required of them </li></ul><ul><ul><li>You can ‘find and assign’ </li></ul></ul><ul><li>Gives our organisation and people a level of defensibility </li></ul><ul><ul><li>Protects staff and the departments reputation </li></ul></ul><ul><ul><li>Awareness of main legal obligations </li></ul></ul><ul><ul><li>Minimises potential legal breaches and resulting harm </li></ul></ul><ul><li>Highlights continuous room for improvement </li></ul>Why have we decided to do this? BENEFITS !
  14. 14. Responsibilities that govern how we work Underpinning this is Risk management framework ! What price is non-compliance ? <ul><li>Environmental framework </li></ul>Environmental <ul><li>Public Administration Act </li></ul>Code of Conduct <ul><li>Information Security Strategy </li></ul>Information Security <ul><li>Public Records Act </li></ul>Records Management <ul><li>Information Privacy Act </li></ul><ul><li>Freedom of Information Act </li></ul><ul><li>Health Records Act </li></ul>Privacy & FOI
  15. 15. Implementation phases of the program Risk Monitoring & Compliance Awareness & Education Policies & Procedures
  16. 16. Our posters <ul><li>Secondary Posters </li></ul>Primary Poster
  17. 17. The coloured balloon activity
  18. 18. Memory Game
  19. 19. Records Awareness Forums 2007/08 RAW
  20. 20. Events & Activities <ul><li>PAW </li></ul><ul><li>World Computer Security Day </li></ul><ul><li>Environment Month </li></ul>
  21. 21. Achievements
  22. 22. How can our people take responsibility? <ul><li>Visit the Taking Responsibility homepage often for information and tips </li></ul><ul><li>Attend training initiatives when offered </li></ul><ul><li>model the behaviour expected by our policies and procedures (includes putting away and locking away sensitive matters) </li></ul><ul><li>Take five minutes out of your day to familiarise yourself with a policy </li></ul><ul><li>Identify, monitor and notify non-compliant behaviours you witness. Raise issues with your manager and/or at a staff meeting. Don’t be an accomplice to bad behaviours </li></ul><ul><li>Mention in your conversations some of the Taking Responsibility messages </li></ul><ul><li>Sign up for legislative alert services </li></ul><ul><li>Share your suggestions. Email [email_address] What would make you take your responsibilities seriously? </li></ul>
  23. 23. Email: ! Brent Carey 'Taking Responsibility' program 8684 0007 Sandra Willmott Records Management 8684 7054 Michele Spinks Risk Management 8684 0587 Kerry Scholes Information Security Management 8684 1593 Prue Shepherd Regional Engagement 5225 3333 J-Net > Our People > Our Responsibilities Support and further information