SlideShare a Scribd company logo

NAO Technical Discovery ITT National Audit Office

Download as PPTX, PDF
S
stephenadenaike1

Identify technical themes and observations from ongoing research Identify stakeholders covering themes Arrange interviews Definition of scorecard criteria to assess potential solutions Iteration and refinement Ideation Identification of candidate solutions Additional ad hoc interviews Feedback workshop Report production Presentation

Technology
1 of 43
NAO Website Technical Discovery Prepared by Stu Mackellar May 2021
Technical Discovery Process 1. Identify technical themes and observations from ongoing research 2. Identify stakeholders covering themes 3. Arrange interviews 4. Definition of scorecard criteria to assess potential solutions 5. Iteration and refinement a. Ideation b. Identification of candidate solutions c. Additional ad hoc interviews 6. Feedback workshop 7. Report production 8. Presentation
Emerging Technical Themes (from user research) ● Metadata & Content Discovery How can content be more easily navigated? Improvements to search and surfacing of related content. Improvements to metadata and introduction of a structured taxonomy. ● Content Presentation Transition away from PDF alone toward HTML first or a dual format approach. ● Metrics & Measurement How effective is the website in exposing and delivering content? How is the content consumed? ● Accessibility & Responsiveness How can content - particularly visual assets like infographics - be better presented?
Research Topics
How do users want to consume content? Who creates content and what processes surround this? What accessibility requirements are there? Are there any regulatory or legal requirements? Accessibility What analytics data is currently available? What is missing? Are there any privacy implications? Analytics Who is responsible for security within NAO? Are there any regulatory or legal requirements applicable to the website’s security? Security Content How could search be improved to better expose content? How could task or user oriented journeys be used to enhance navigation and discoverability? User Experience What skills are available in house? What is the appetite for building and managing software vs buying? What’s the NAO technical strategy? Technical
Constraints
Overarching Constraints ● Functional ○ The site must be accessible and available reliably across all device types ○ PDF reports must be available for the foreseeable future ○ PDF as a format does not meet all identified user needs ● Financial ○ The budget for the site is relatively small ● Technical ○ There are no in-house full-stack development skills ■ (although basic WordPress and HTML/CSS skills are available) ○ There is no appetite or budget to increase the website team size ● Operational ○ The website must meet overarching NAO security requirements ○ SaaS hosting is the preferred strategic option
Findings
Platform Insight The NAO website was originally introduce in 1997 by the then librarian and was hand-coded in HTML. It has since been through various revisions. The site was migrated to a content management system provided by Alterian prior to 2010. It was then migrated again to WordPress around 2013 by Code For The People. A custom theme and plugin were developed at this stage. In 2016 the Sage starter theme was introduced, which is the current basis of the site today. The NAO plugin has been refined and continually developed and provides a variety of functionality, including custom post types for reports, widgets for displaying content and workflow elements. WordPress is a popular and well understood content management system (CMS) and is widely recognised as a market leader. There has been significant investment in the current implementation and its custom functionality, such as themes and plugins, and also integration with NAO workflows and processes.
Platform Recommendations Goal: Provide a well understood, secure, affordable and functional platform on which NAO content can be effectively distributed to its users Recommendations: ● Continue with the use of WordPress as a platform ● Review theme and plugin usage for fitness for purpose and commission updates or replacements where necessary Pros Cons ● Well understood within NAO and externally ● Avoids assessment and migration costs of replatforming ● Highly performant and extensible ● Plentiful off-the-shelf plugin availability ● Relatively inexpensive ● May not cover outlying use cases, although NAO’s usage patterns are fairly mainstream ● Bespoke functionality requires specialist development expertise
Hosting Insight The NAO website is currently hosted by CIVIC, who have also provided various software consultancy services over the past few years. CIVIC provide a hosted WordPress service, including application of critical security patches and some updates. It is effectively a PaaS (platform as a service) solution. The NAO IT strategy is to move away from on-premise hosting within the next 12-18 months, with SaaS the strongly preferred option, or cloud hosting in Azure otherwise. Configuration management is seen as a weakness of the current arrangement, particularly from a security perspective. Access control and limited configuration of identity management functionality is concerning. A move to a fully-managed SaaS (software as a service) solution employing federated identity management would be preferred. The website is currently configured in multi-site mode. This is considered unnecessary and consolidation of the existing sub-sites with the primary site would be simpler with no loss of function.
Hosting Recommendations Goal: Ensure the NAO website is highly available, cost-effective and manageable by NAO in-house staff Recommendations: ● Explore moving to a WordPress SaaS (Software as a Service) provider ● Consolidate the current multi-site setup into a single-site configuration Pros Cons ● SaaS vastly reduces the administrative overheads and security risks around running a WordPress installation ● SaaS solutions are optimised for efficiency and hence low cost ● Moving to a single-site configuration reduces complexity ● Changes to hosting can be disruptive ● SaaS is one size fits all so any customisation outside of basic configuration and plugin usage will generally not be possible (this is unlikely to be a huge concern given NAO’s relatively typical usage patterns)
Content Insight Website content is predominantly created via a fairly complex workflow which is centred around Adobe’s InDesign software. Any changes to how content is produced or to generated formats will consequently require changes to this process. Numerous opportunities for improvement of the workflow have been identified over recent years and lack of capacity has generally prevented corresponding action. For example, manually uploading content is inefficient and automation of this process would save time and be more repeatable. Reports are the website’s primary content type and comprise of various components such as a synopsis, an executive summary and the report itself. They are generated in several formats (PDF for web, PDF for print, epub). None of these formats lend themselves particularly to interactivity, linking into the content or finding specific segments of interest. Various data visualisations are also published. These generally are published from one of two data processing tools: Tableau and Shiny. The visualisations are embedded in the website as independent assets and hosted elsewhere.
Content Recommendations Goal: Ensure NAO website users are able to find and consume reports and related content easily Recommendations: ● Prototype an HTML report variant (either full, partial or both) by modifying the InDesign workflow to generate HTML from source ● Evaluate the Ajar Productions in5 plugin for HTML generation ● Prototype concept designs ● Explore automated ingestion of content into WordPress using plugins such as WP Media Folder Pros Cons ● Generation from source will provide maximum flexibility ● Different layouts could be applied to each content type ● Automated ingestion will be faster and more repeatable ● Additional effort needed in understanding, setting up and managing the in5 plugin functionality ● Creating new HTML report layouts will require changes to workflows and ongoing effort to maintain
Search Insight The website currently has a search function which is prominently displayed at the top of every page. It’s implemented using the Swiftype WordPress plugin. There has been strong and consistent feedback from both internal and external users that the search functionality does not work as well as it could. Multiple users have reported resorting to generic Google web search as an alternative entry point to NAO content. Additional content navigation tooling exists internally for NAO users. The Back Catalogue Analyser, built by the analytics team, is one of the most prominent of these. It has been suggested that, while not a panacea, this tool could contribute toward provision of an improved externally-facing search function. The use of enhanced search functionality, such as autocomplete and faceted filtering have been suggested as another approach to improving search performance and these have been incorporated into the concepts designed during this discovery work.
Search Recommendations Goal: Provide an enhanced search experience across the NAO website Recommendations: ● Evaluate the ElasticPress plugin for WordPress to provide autocomplete and faceted filtering ● Explore the plugin’s advanced configuration options to optimise of various search characteristics Pros Cons ● Using a plugin is a quick and easy solution ● ElasticPress is free and open source ● It is based on ElasticSearch, a hugely popular and well regarded indexing tool ● No guaranteed technical support as open source
Tagging Insight Content is tagged within WordPress as part of the publication workflow. The taxonomy is hard-code within WordPress and is thus maintained by the external comms team. Each content item can have multiple tags. There also exists a separate taxonomy internally, which is used for a variety of purposes. There is a current ongoing effort to improve this through consistency of language and simplification of the overarching structure. This taxonomy is considered the master and the system of record is SharePoint. The lack of consistent tagging of internal and external facing content has caused confusion and there’s a strong desire to consolidate into a single source of truth. Different terminology is used for the same concepts publicly and internally in some cases and this has also resulted in confusion on occasion.
Tagging Recommendations Goal: Make it easier for users to find the NAO content they’re looking for and other related content Recommendations: ● Use a single, unified taxonomy and consistent terminology to annotate content with metadata ● Ensure the taxonomy’s design is flexible and enables support for hierarchical layers of tags ● Explore the viability of synchronising SharePoint master taxonomy data to WordPress ● Explore automated tagging of content through analysis of text and extraction of references to other NAO reports using tools such as the Back Catalogue Analyser Pros Cons ● A single taxonomy will ensure consistency and remove ambiguity ● Synchronisation of internal and external taxonomies will reduce administrative effort ● Automated keyword analysis will enable quicker and more complete tagging ● Getting master taxonomy data into WordPress may present some technical challenges ● Automated tagging may be less effective than hand- curated tags
Data Insight Many reports are based on or contain statistical analysis of underlying data sets, which are sourced from one or more government departments. There is often a degree of aggregation and processing needed to ensure related data sets are consistent and standardised. This function is performed in-house by data and analytics teams. Data is generally held in a data warehouse and processed using a variety of tools. Tableau and Shiny are the two commercial products which are integrated with the website. There is an internally developed data service and an associated REST API which are used as the basis for several bespoke tools. There is an aspiration toward publication of raw data sets, which is something that has been previously discouraged within NAO, for various reasons. Some small data sets are currently published alongside visualisations in CSV format. Other options that have been previously considered include provision of a public API, either by making the existing internal API publicly accessible or by creating a new one, and making CSV data sets more widely available.
Data Recommendations Goal: Expose the underlying data sets that are used within NAO reports and visualisations Recommendations: ● Explore exposing the existing internal REST API publicly with additional access controls if necessary ● Alternatively or additionally, explore the feasibility of providing CSV exports of the raw data used to generate reports and visualisations Pros Cons ● Reusing an existing API saves time, effort and duplication ● CSV exports are simple to create and distribute and widely supported by third party software ● Integration between internal and external systems may present technical and security challenges ● The existing API may not meet all use cases ● No strategic decision on public data access has been taken, so action taken now may be premature
Analytics Insight Currently the website is integrated with Google Analytics. Data is made available in Google Data Studio, which is performing well for existing use cases. A review of the Google Analytics implementation and overall analytics pipeline is desired and will likely be outsourced to external experts. Metrics include page views and downloads. The MonsterInsights analytics plugin is already enabled on the site and its efficacy is unclear. There is a desire to enhance analytics capabilities with additional metrics, such as content engagement (progress, view time) and capturing progress through specific user journeys. There is a tension between the need for content engagement metrics and the use of PDFs as the primary consumption format, due to the offline nature of PDF documents. Adobe have made some progress toward enhancing PDF usage tracking, which may warrant further investigation. Dashboards (primarily in Google Data Studio) are the primary consumption method for analytic data. Export to CSV for ad hoc analysis would be of additional benefit. Data Studio may support this to some extent although no research has yet been done to assess its capabilities in this area.
Analytics Recommendations Goal: Provide NAO with better visibility of how content is consumed Recommendations: ● Review existing Google Analytics configuration and optimise to provide more granular tracking Assess whether the MonsterInsights plugin is adding value ● Assess content groupings as a technique for capturing progress through specific user journeys ● Review Data Studio usage and explore whether dashboards can be enhanced to deliver new metrics Pros Cons ● Google Analytics is ubiquitous, well understood and free ● Consultancy and advice is plentiful and inexpensive ● Capturing user journeys using built in tools removes the cost and complexity of introducing additional software ● The granularity of journey that can be expressed with content groupings will not be as fine as when using software dedicated to this purpose ● There are potential privacy concerns if user’s personal data is sent to Google
Accessibility Insight The website was the subject of a recent accessibility audit, for which it received a score of 7 out of 10. The site scores reasonably well against a selection of high profile accessibility assessment tools. For example, it has an 85% compliance score at www.webaccessibility.com. Anecdotally, there are some known issues with the responsiveness of the site on some device types, particularly smaller screens. Some of the embedded assets which use HTML iframes also have a higher degree of accessibility issues.
Accessibility Recommendations Goal: Ensure NAO content can be consumed effectively by users with additional needs and on all device types Recommendations: ● Identify tactical targets for improvement based on the latest audit results and automated scans using standard accessibility tools ● Optimise WordPress templates to increase responsiveness of iframe content to improve visualisations Pros Cons ● The site is already reasonably conformant and targeting tactical improvements removes the need for full rework ● WordPress has excellent accessibility support built in and through plugins which can be leveraged to mitigate some of the failings with embedded assets ● Tactical, layered fixes to embedded assets avoids the need to look at replacing or reworking the entire asset ecosystem ● Fixing accessibility issues in third party assets by manipulating HTML is never going to give results as good as fixing the issues at source
SEO Insight Google tooling is also used to some extent already to measure search engine optimisation performance, although this is obviously skewed toward a Google perspective. A WordPress plugin called Yoast is currently active on the site and its efficacy is unclear. No specific SEO concerns have been raised during research, although confidence in the status quo is uncertain.
SEO Recommendations Goal: Ensure NAO content ranks high in search engine listings for relevant keywords and related searches Recommendations: ● Optimise existing WordPress templates to ensure that tags and any additional metadata that are introduced are exposed to search engines using standard protocols ● Review content production workflows to ensure content is optimised for SEO ● Review efficacy of the Yoast plugin Pros Cons ● WordPress is heavily optimised for good search ranking out of the box ● There are plenty of plugins available to fine tune results if deemed necessary ● None
Security & Compliance Insight The website must be compliant with various privacy legislation, including: ● GDPR/DPA ● PECR Its cookie implementation is not currently compliant with PECR, although there are ongoing efforts to rectify this. Given that the website does process some personally identifiable information (PII), a PII log should be kept and a data privacy impact assessment should be undertaken. No evidence of these was found.
Security & Compliance Recommendations Goal: Ensure the NAO website protects sensitive data, is highly resistant to common threat vectors and complies with all applicable legislation Recommendations: ● Explore implementation of identity federation to provide seamless, integrated access control ● Conduct a data protection impact assessment (DPIA) and create a personally identifiable information (PII) log ● Continue ongoing efforts to implement compliant cookie handling Pros Cons ● Integrated access control helps NAO staff manage access centrally and removes the need for additional credentials ● Conducting a DPIA will ensure NAO are able to assess compliance with relevant legislation and identify any gaps ● None
Delivery Models
Software as a Service (SaaS) Description: Procure a website platform as a commoditised service which is hosted and managed by the supplier on the customer’s behalf Pros Cons ● Relatively inexpensive and highly predictable cost ● Reduction in administrative overhead ● Hence less in-house technical support required ● Lack of flexibility and control ● Some potential for vendor lock-in Supplier Responsibilities Customer Responsibilities ● Hosting, availability, security, performance ● Features and functionality ● Content management ● Configuration
Outsourced Development Description: Engage a supplier to create and maintain a website solution independently based on NAO requirements. Can be structured as an ongoing relationship with one supplier or as discrete units of work, potentially across many suppliers. Pros Cons ● Requires very little in-house technical knowledge ● Reduction in administrative overhead ● Relatively expensive ● Lack of technical skills inhibits ability to understand or influence solution ● High risk of vendor lock-in Supplier Responsibilities Customer Responsibilities ● Development ● Infrastructure management ● Content management ● Requirement definition ● Acceptance testing
Augmented Development Description: Work collaboratively with a supplier to create a website solution based on NAO requirements. Generally requires building a good working relationship with a single supplier. Pros Cons ● Ability to use supplier only as much as needed, minimising spend ● Ability to leverage a wider set of skills ● Opportunity to transfer skills and knowledge in-house ● Requires a larger (i.e. > 1) internal team to do this well ● Moderately expensive ● Health of supplier relationship is critical to success Supplier Responsibilities Customer Responsibilities ● Development ● Shared infrastructure management ● Content management ● Requirement definition ● Development ● Shared infrastructure management
Appendix Alternative options
Platform Goal: Provide a well understood, secure, affordable and functional platform on which NAO content can be effectively distributed to its users Other options Limitations Consider another headful CMS platform WordPress is well regarded generally and well understood by NAO so there is no compelling reason to change Commission a bespoke solution from external suppliers Expensive, lack of control and potential vendor lock-in Recruit an internal team to build a bespoke solution Expensive and goes against stated NAO strategy
Hosting Goal: Ensure the NAO website is highly available, cost-effective and manageable by NAO in-house staff Other options Limitations Explore hosting a WordPress instance in Azure Additional management overhead and maintenance. Non- strategic.
Content Goal: Ensure NAO website users are able to find and consume reports and related content easily Other options Limitations Continue to explore PDF to HTML conversion techniques Exporting from source data will always give better results than converting an intermediate format Create independent production workflows for PDF and HTML Doubles the effort involved in producing content
Search Goal: Provide an enhanced search experience across the NAO website Other options Limitations Attempt to improve performance of the Swiftype plugin The Swiftype plugin is not as fully featured Assess other WP search plugins The ElasticPress plugin is considered best in class Build a custom plugin Expensive, requires bespoke external development
Tagging Goal: Make it easier for users to find the NAO content they’re looking for and other, related content Other options Limitations Keep internal and external taxonomies synchronised manually Additional manual effort and potential for synchronisation to fail, resulting in inconsistencies Evaluate dynamically generated relations (e.g. from ElasticPress plugin) Dynamic relations will not conform to a predefined taxonomy, although may still give adequate results
Data Goal: Expose the underlying data sets that are used within NAO reports and visualisations Other options Limitations Build a new REST API purely for public consumption Additional cost to build and maintain, although it would potentially be easier to secure
Analytics Goal: Provide NAO with better visibility of how content is consumed Other options Limitations Explore other WordPress plugins for advanced Google Analytics use cases (e.g. Journey Analytics) Google Analytics built in functionality is powerful, so be aware of increasing costs and diminishing returns
Accessibility Goal: Ensure NAO content can be consumed effectively by users with additional needs and on all device types Other options Limitations Explore WordPress accessibility plugins to target specific issues Use of multiple plugins increases management overhead and the likelihood of conflicting behaviour
SEO Goal: Ensure NAO content ranks high in search engine listings for relevant keywords and related searches Other options Limitations Explore additional WordPress SEO plugins. Use of multiple plugins increases management overhead and the likelihood of conflicting behaviour
Security & Compliance Goal: Ensure the NAO website protects sensitive data, is highly resistant to common threat vectors and complies with all applicable legislation Other options Limitations Retain and improve independent access control Harder to apply effective governance and requires users to maintain additional accounts Remove PII from the website Limits functionality of the site

Recommended

Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...
Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...
Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...QueBIT Consulting
 
Out With the Old, in With the Open-source: Brainshark's Complete CMS Migration
Out With the Old, in With the Open-source: Brainshark's Complete CMS MigrationOut With the Old, in With the Open-source: Brainshark's Complete CMS Migration
Out With the Old, in With the Open-source: Brainshark's Complete CMS MigrationAcquia
 
Building a Documentation Portal
Building a Documentation PortalBuilding a Documentation Portal
Building a Documentation Portalstc-siliconvalley
 
Find What You Need Fast with the Google Search Appliance
Find What You Need Fast with the Google Search ApplianceFind What You Need Fast with the Google Search Appliance
Find What You Need Fast with the Google Search ApplianceFishbowl Solutions
 
IT_Marketing_Internship Final Presentation
IT_Marketing_Internship Final PresentationIT_Marketing_Internship Final Presentation
IT_Marketing_Internship Final PresentationKieran Caldwell
 
Best Practices with Sitecore
Best Practices with SitecoreBest Practices with Sitecore
Best Practices with SitecoreAnant Corporation
 
Datasheet foldermanagementpluginforrd
Datasheet foldermanagementpluginforrdDatasheet foldermanagementpluginforrd
Datasheet foldermanagementpluginforrdMidVision
 
WordPress North East (Jan 2021) ~ SEO Fundamentals For WordPress
WordPress North East (Jan 2021) ~ SEO Fundamentals For WordPressWordPress North East (Jan 2021) ~ SEO Fundamentals For WordPress
WordPress North East (Jan 2021) ~ SEO Fundamentals For WordPressDan Taylor
 

Recommended

Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...
Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...
Preparing for Your Cognos Analytics Upgrade April 2017 Webinar - QueBIT Consu...QueBIT Consulting
 
Out With the Old, in With the Open-source: Brainshark's Complete CMS Migration
Out With the Old, in With the Open-source: Brainshark's Complete CMS MigrationOut With the Old, in With the Open-source: Brainshark's Complete CMS Migration
Out With the Old, in With the Open-source: Brainshark's Complete CMS MigrationAcquia
 
Building a Documentation Portal
Building a Documentation PortalBuilding a Documentation Portal
Building a Documentation Portalstc-siliconvalley
 
Find What You Need Fast with the Google Search Appliance
Find What You Need Fast with the Google Search ApplianceFind What You Need Fast with the Google Search Appliance
Find What You Need Fast with the Google Search ApplianceFishbowl Solutions
 
IT_Marketing_Internship Final Presentation
IT_Marketing_Internship Final PresentationIT_Marketing_Internship Final Presentation
IT_Marketing_Internship Final PresentationKieran Caldwell
 
Best Practices with Sitecore
Best Practices with SitecoreBest Practices with Sitecore
Best Practices with SitecoreAnant Corporation
 
Datasheet foldermanagementpluginforrd
Datasheet foldermanagementpluginforrdDatasheet foldermanagementpluginforrd
Datasheet foldermanagementpluginforrdMidVision
 
WordPress North East (Jan 2021) ~ SEO Fundamentals For WordPress
WordPress North East (Jan 2021) ~ SEO Fundamentals For WordPressWordPress North East (Jan 2021) ~ SEO Fundamentals For WordPress
WordPress North East (Jan 2021) ~ SEO Fundamentals For WordPressDan Taylor
 
Shifting WordPress from Manual to Automattic
Shifting WordPress from Manual to AutomatticShifting WordPress from Manual to Automattic
Shifting WordPress from Manual to AutomatticNewPath Consulting (Technology for Small Business)
 
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovix
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovixapidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovix
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovixapidays
 
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...[DevDay2018] Embrace the challenge – working as a developer in Content Manage...
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...DevDay.org
 
Using sharepoint to solve business problems #spsnairobi2014
Using sharepoint to solve business problems #spsnairobi2014Using sharepoint to solve business problems #spsnairobi2014
Using sharepoint to solve business problems #spsnairobi2014Amos Wachanga
 
Aayush Sinha_8.4Yrs_PO_BA
Aayush Sinha_8.4Yrs_PO_BAAayush Sinha_8.4Yrs_PO_BA
Aayush Sinha_8.4Yrs_PO_BAaayush sinha
 
Big Data Perspective (UI)
Big Data Perspective (UI)Big Data Perspective (UI)
Big Data Perspective (UI)Avkash Chauhan
 
Webinar: Slippery Slope of SharePoint Migrations
Webinar: Slippery Slope of SharePoint Migrations Webinar: Slippery Slope of SharePoint Migrations
Webinar: Slippery Slope of SharePoint Migrations WithumSmith+Brown, formerly Portal Solutions
 
Scrum Prioritization Techniques PowerPoint Presentation Slides
Scrum Prioritization Techniques PowerPoint Presentation SlidesScrum Prioritization Techniques PowerPoint Presentation Slides
Scrum Prioritization Techniques PowerPoint Presentation SlidesSlideTeam
 
Open Innovation Lab (OIL) - 2014 Sep 26th
Open Innovation Lab (OIL) - 2014 Sep 26thOpen Innovation Lab (OIL) - 2014 Sep 26th
Open Innovation Lab (OIL) - 2014 Sep 26thWong Hoi Sing Edison
 
Scrum Prioritization Techniques Powerpoint Presentation Slides
Scrum Prioritization Techniques Powerpoint Presentation SlidesScrum Prioritization Techniques Powerpoint Presentation Slides
Scrum Prioritization Techniques Powerpoint Presentation SlidesSlideTeam
 
How open source is funded? LJC London Sept 2019
How open source is funded? LJC London Sept 2019How open source is funded? LJC London Sept 2019
How open source is funded? LJC London Sept 2019Mauricio (Salaboy) Salatino
 
How open source is funded the enterprise differentiation tightrope (1)
How open source is funded the enterprise differentiation tightrope (1)How open source is funded the enterprise differentiation tightrope (1)
How open source is funded the enterprise differentiation tightrope (1)Ryan Dawson
 
Actuate BIRT best practices v1 0
Actuate BIRT best practices v1 0Actuate BIRT best practices v1 0
Actuate BIRT best practices v1 0Aishwarya Savant
 
Improve Your Frontend Agility with Proven Optimization Methods
Improve Your Frontend Agility with Proven Optimization MethodsImprove Your Frontend Agility with Proven Optimization Methods
Improve Your Frontend Agility with Proven Optimization MethodsInexture Solutions
 
Baobab WebSuite overview - Publisher's Toolbox
Baobab WebSuite overview - Publisher's ToolboxBaobab WebSuite overview - Publisher's Toolbox
Baobab WebSuite overview - Publisher's ToolboxPublisher's Toolbox
 
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...WordCamp Sydney
 
DrGanesh-Jan-17-Resume-V1.0
DrGanesh-Jan-17-Resume-V1.0DrGanesh-Jan-17-Resume-V1.0
DrGanesh-Jan-17-Resume-V1.0Dr Ganesh Iyer
 
The Technical Side of Harvard.edu Redesign
The Technical Side of Harvard.edu RedesignThe Technical Side of Harvard.edu Redesign
The Technical Side of Harvard.edu RedesignHarvard Web Working Group
 
Business Intelligence Software Comparison 2021
Business Intelligence Software Comparison 2021Business Intelligence Software Comparison 2021
Business Intelligence Software Comparison 2021Ibrahim HALOUANE
 
Visual paradigm-leaflet
Visual paradigm-leafletVisual paradigm-leaflet
Visual paradigm-leafletCurtis Tsang
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsPrecisely
 

More Related Content

Similar to NAO Technical Discovery ITT National Audit Office

apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovix
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovixapidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovix
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovixapidays
 
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...[DevDay2018] Embrace the challenge – working as a developer in Content Manage...
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...DevDay.org
 
Using sharepoint to solve business problems #spsnairobi2014
Using sharepoint to solve business problems #spsnairobi2014Using sharepoint to solve business problems #spsnairobi2014
Using sharepoint to solve business problems #spsnairobi2014Amos Wachanga
 
Aayush Sinha_8.4Yrs_PO_BA
Aayush Sinha_8.4Yrs_PO_BAAayush Sinha_8.4Yrs_PO_BA
Aayush Sinha_8.4Yrs_PO_BAaayush sinha
 
Big Data Perspective (UI)
Big Data Perspective (UI)Big Data Perspective (UI)
Big Data Perspective (UI)Avkash Chauhan
 
Scrum Prioritization Techniques PowerPoint Presentation Slides
Scrum Prioritization Techniques PowerPoint Presentation SlidesScrum Prioritization Techniques PowerPoint Presentation Slides
Scrum Prioritization Techniques PowerPoint Presentation SlidesSlideTeam
 
Open Innovation Lab (OIL) - 2014 Sep 26th
Open Innovation Lab (OIL) - 2014 Sep 26thOpen Innovation Lab (OIL) - 2014 Sep 26th
Open Innovation Lab (OIL) - 2014 Sep 26thWong Hoi Sing Edison
 
Scrum Prioritization Techniques Powerpoint Presentation Slides
Scrum Prioritization Techniques Powerpoint Presentation SlidesScrum Prioritization Techniques Powerpoint Presentation Slides
Scrum Prioritization Techniques Powerpoint Presentation SlidesSlideTeam
 
How open source is funded the enterprise differentiation tightrope (1)
How open source is funded the enterprise differentiation tightrope (1)How open source is funded the enterprise differentiation tightrope (1)
How open source is funded the enterprise differentiation tightrope (1)Ryan Dawson
 
Actuate BIRT best practices v1 0
Actuate BIRT best practices v1 0Actuate BIRT best practices v1 0
Actuate BIRT best practices v1 0Aishwarya Savant
 
Improve Your Frontend Agility with Proven Optimization Methods
Improve Your Frontend Agility with Proven Optimization MethodsImprove Your Frontend Agility with Proven Optimization Methods
Improve Your Frontend Agility with Proven Optimization MethodsInexture Solutions
 
Baobab WebSuite overview - Publisher's Toolbox
Baobab WebSuite overview - Publisher's ToolboxBaobab WebSuite overview - Publisher's Toolbox
Baobab WebSuite overview - Publisher's ToolboxPublisher's Toolbox
 
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...WordCamp Sydney
 
DrGanesh-Jan-17-Resume-V1.0
DrGanesh-Jan-17-Resume-V1.0DrGanesh-Jan-17-Resume-V1.0
DrGanesh-Jan-17-Resume-V1.0Dr Ganesh Iyer
 
Business Intelligence Software Comparison 2021
Business Intelligence Software Comparison 2021Business Intelligence Software Comparison 2021
Business Intelligence Software Comparison 2021Ibrahim HALOUANE
 
Visual paradigm-leaflet
Visual paradigm-leafletVisual paradigm-leaflet
Visual paradigm-leafletCurtis Tsang
 

Similar to NAO Technical Discovery ITT National Audit Office (20)

Shifting WordPress from Manual to Automattic
Shifting WordPress from Manual to AutomatticShifting WordPress from Manual to Automattic
Shifting WordPress from Manual to Automattic
 
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovix
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovixapidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovix
apidays LIVE Paris 2021 - Who writes the Docs? by Laura Vass, Pronovix
 
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...[DevDay2018] Embrace the challenge – working as a developer in Content Manage...
[DevDay2018] Embrace the challenge – working as a developer in Content Manage...
 
Using sharepoint to solve business problems #spsnairobi2014
Using sharepoint to solve business problems #spsnairobi2014Using sharepoint to solve business problems #spsnairobi2014
Using sharepoint to solve business problems #spsnairobi2014
 
Aayush Sinha_8.4Yrs_PO_BA
Aayush Sinha_8.4Yrs_PO_BAAayush Sinha_8.4Yrs_PO_BA
Aayush Sinha_8.4Yrs_PO_BA
 
Big Data Perspective (UI)
Big Data Perspective (UI)Big Data Perspective (UI)
Big Data Perspective (UI)
 
Webinar: Slippery Slope of SharePoint Migrations
Webinar: Slippery Slope of SharePoint Migrations Webinar: Slippery Slope of SharePoint Migrations
Webinar: Slippery Slope of SharePoint Migrations
 
Scrum Prioritization Techniques PowerPoint Presentation Slides
Scrum Prioritization Techniques PowerPoint Presentation SlidesScrum Prioritization Techniques PowerPoint Presentation Slides
Scrum Prioritization Techniques PowerPoint Presentation Slides
 
Open Innovation Lab (OIL) - 2014 Sep 26th
Open Innovation Lab (OIL) - 2014 Sep 26thOpen Innovation Lab (OIL) - 2014 Sep 26th
Open Innovation Lab (OIL) - 2014 Sep 26th
 
Scrum Prioritization Techniques Powerpoint Presentation Slides
Scrum Prioritization Techniques Powerpoint Presentation SlidesScrum Prioritization Techniques Powerpoint Presentation Slides
Scrum Prioritization Techniques Powerpoint Presentation Slides
 
How open source is funded? LJC London Sept 2019
How open source is funded? LJC London Sept 2019How open source is funded? LJC London Sept 2019
How open source is funded? LJC London Sept 2019
 
How open source is funded the enterprise differentiation tightrope (1)
How open source is funded the enterprise differentiation tightrope (1)How open source is funded the enterprise differentiation tightrope (1)
How open source is funded the enterprise differentiation tightrope (1)
 
Actuate BIRT best practices v1 0
Actuate BIRT best practices v1 0Actuate BIRT best practices v1 0
Actuate BIRT best practices v1 0
 
Improve Your Frontend Agility with Proven Optimization Methods
Improve Your Frontend Agility with Proven Optimization MethodsImprove Your Frontend Agility with Proven Optimization Methods
Improve Your Frontend Agility with Proven Optimization Methods
 
Baobab WebSuite overview - Publisher's Toolbox
Baobab WebSuite overview - Publisher's ToolboxBaobab WebSuite overview - Publisher's Toolbox
Baobab WebSuite overview - Publisher's Toolbox
 
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...
Unscrambling An Omelette - How Companies Can Use WordPress Better - Jeremy Ke...
 
DrGanesh-Jan-17-Resume-V1.0
DrGanesh-Jan-17-Resume-V1.0DrGanesh-Jan-17-Resume-V1.0
DrGanesh-Jan-17-Resume-V1.0
 
The Technical Side of Harvard.edu Redesign
The Technical Side of Harvard.edu RedesignThe Technical Side of Harvard.edu Redesign
The Technical Side of Harvard.edu Redesign
 
Business Intelligence Software Comparison 2021
Business Intelligence Software Comparison 2021Business Intelligence Software Comparison 2021
Business Intelligence Software Comparison 2021
 
Visual paradigm-leaflet
Visual paradigm-leafletVisual paradigm-leaflet
Visual paradigm-leaflet
 

Recently uploaded

AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsPrecisely
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxnull - The Open Security Community
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentationphoebematthew05
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfBluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfngoud9212
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 

Recently uploaded (20)

AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power Systems
 
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptxVulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentation
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Bluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdfBluetooth Controlled Car with Arduino.pdf
Bluetooth Controlled Car with Arduino.pdf
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 

NAO Technical Discovery ITT National Audit Office

  • 1. NAO Website Technical Discovery Prepared by Stu Mackellar May 2021
  • 2. Technical Discovery Process 1. Identify technical themes and observations from ongoing research 2. Identify stakeholders covering themes 3. Arrange interviews 4. Definition of scorecard criteria to assess potential solutions 5. Iteration and refinement a. Ideation b. Identification of candidate solutions c. Additional ad hoc interviews 6. Feedback workshop 7. Report production 8. Presentation
  • 3. Emerging Technical Themes (from user research) ● Metadata & Content Discovery How can content be more easily navigated? Improvements to search and surfacing of related content. Improvements to metadata and introduction of a structured taxonomy. ● Content Presentation Transition away from PDF alone toward HTML first or a dual format approach. ● Metrics & Measurement How effective is the website in exposing and delivering content? How is the content consumed? ● Accessibility & Responsiveness How can content - particularly visual assets like infographics - be better presented?
  • 5. How do users want to consume content? Who creates content and what processes surround this? What accessibility requirements are there? Are there any regulatory or legal requirements? Accessibility What analytics data is currently available? What is missing? Are there any privacy implications? Analytics Who is responsible for security within NAO? Are there any regulatory or legal requirements applicable to the website’s security? Security Content How could search be improved to better expose content? How could task or user oriented journeys be used to enhance navigation and discoverability? User Experience What skills are available in house? What is the appetite for building and managing software vs buying? What’s the NAO technical strategy? Technical
  • 7. Overarching Constraints ● Functional ○ The site must be accessible and available reliably across all device types ○ PDF reports must be available for the foreseeable future ○ PDF as a format does not meet all identified user needs ● Financial ○ The budget for the site is relatively small ● Technical ○ There are no in-house full-stack development skills ■ (although basic WordPress and HTML/CSS skills are available) ○ There is no appetite or budget to increase the website team size ● Operational ○ The website must meet overarching NAO security requirements ○ SaaS hosting is the preferred strategic option
  • 9. Platform Insight The NAO website was originally introduce in 1997 by the then librarian and was hand-coded in HTML. It has since been through various revisions. The site was migrated to a content management system provided by Alterian prior to 2010. It was then migrated again to WordPress around 2013 by Code For The People. A custom theme and plugin were developed at this stage. In 2016 the Sage starter theme was introduced, which is the current basis of the site today. The NAO plugin has been refined and continually developed and provides a variety of functionality, including custom post types for reports, widgets for displaying content and workflow elements. WordPress is a popular and well understood content management system (CMS) and is widely recognised as a market leader. There has been significant investment in the current implementation and its custom functionality, such as themes and plugins, and also integration with NAO workflows and processes.
  • 10. Platform Recommendations Goal: Provide a well understood, secure, affordable and functional platform on which NAO content can be effectively distributed to its users Recommendations: ● Continue with the use of WordPress as a platform ● Review theme and plugin usage for fitness for purpose and commission updates or replacements where necessary Pros Cons ● Well understood within NAO and externally ● Avoids assessment and migration costs of replatforming ● Highly performant and extensible ● Plentiful off-the-shelf plugin availability ● Relatively inexpensive ● May not cover outlying use cases, although NAO’s usage patterns are fairly mainstream ● Bespoke functionality requires specialist development expertise
  • 11. Hosting Insight The NAO website is currently hosted by CIVIC, who have also provided various software consultancy services over the past few years. CIVIC provide a hosted WordPress service, including application of critical security patches and some updates. It is effectively a PaaS (platform as a service) solution. The NAO IT strategy is to move away from on-premise hosting within the next 12-18 months, with SaaS the strongly preferred option, or cloud hosting in Azure otherwise. Configuration management is seen as a weakness of the current arrangement, particularly from a security perspective. Access control and limited configuration of identity management functionality is concerning. A move to a fully-managed SaaS (software as a service) solution employing federated identity management would be preferred. The website is currently configured in multi-site mode. This is considered unnecessary and consolidation of the existing sub-sites with the primary site would be simpler with no loss of function.
  • 12. Hosting Recommendations Goal: Ensure the NAO website is highly available, cost-effective and manageable by NAO in-house staff Recommendations: ● Explore moving to a WordPress SaaS (Software as a Service) provider ● Consolidate the current multi-site setup into a single-site configuration Pros Cons ● SaaS vastly reduces the administrative overheads and security risks around running a WordPress installation ● SaaS solutions are optimised for efficiency and hence low cost ● Moving to a single-site configuration reduces complexity ● Changes to hosting can be disruptive ● SaaS is one size fits all so any customisation outside of basic configuration and plugin usage will generally not be possible (this is unlikely to be a huge concern given NAO’s relatively typical usage patterns)
  • 13. Content Insight Website content is predominantly created via a fairly complex workflow which is centred around Adobe’s InDesign software. Any changes to how content is produced or to generated formats will consequently require changes to this process. Numerous opportunities for improvement of the workflow have been identified over recent years and lack of capacity has generally prevented corresponding action. For example, manually uploading content is inefficient and automation of this process would save time and be more repeatable. Reports are the website’s primary content type and comprise of various components such as a synopsis, an executive summary and the report itself. They are generated in several formats (PDF for web, PDF for print, epub). None of these formats lend themselves particularly to interactivity, linking into the content or finding specific segments of interest. Various data visualisations are also published. These generally are published from one of two data processing tools: Tableau and Shiny. The visualisations are embedded in the website as independent assets and hosted elsewhere.
  • 14. Content Recommendations Goal: Ensure NAO website users are able to find and consume reports and related content easily Recommendations: ● Prototype an HTML report variant (either full, partial or both) by modifying the InDesign workflow to generate HTML from source ● Evaluate the Ajar Productions in5 plugin for HTML generation ● Prototype concept designs ● Explore automated ingestion of content into WordPress using plugins such as WP Media Folder Pros Cons ● Generation from source will provide maximum flexibility ● Different layouts could be applied to each content type ● Automated ingestion will be faster and more repeatable ● Additional effort needed in understanding, setting up and managing the in5 plugin functionality ● Creating new HTML report layouts will require changes to workflows and ongoing effort to maintain
  • 15. Search Insight The website currently has a search function which is prominently displayed at the top of every page. It’s implemented using the Swiftype WordPress plugin. There has been strong and consistent feedback from both internal and external users that the search functionality does not work as well as it could. Multiple users have reported resorting to generic Google web search as an alternative entry point to NAO content. Additional content navigation tooling exists internally for NAO users. The Back Catalogue Analyser, built by the analytics team, is one of the most prominent of these. It has been suggested that, while not a panacea, this tool could contribute toward provision of an improved externally-facing search function. The use of enhanced search functionality, such as autocomplete and faceted filtering have been suggested as another approach to improving search performance and these have been incorporated into the concepts designed during this discovery work.
  • 16. Search Recommendations Goal: Provide an enhanced search experience across the NAO website Recommendations: ● Evaluate the ElasticPress plugin for WordPress to provide autocomplete and faceted filtering ● Explore the plugin’s advanced configuration options to optimise of various search characteristics Pros Cons ● Using a plugin is a quick and easy solution ● ElasticPress is free and open source ● It is based on ElasticSearch, a hugely popular and well regarded indexing tool ● No guaranteed technical support as open source
  • 17. Tagging Insight Content is tagged within WordPress as part of the publication workflow. The taxonomy is hard-code within WordPress and is thus maintained by the external comms team. Each content item can have multiple tags. There also exists a separate taxonomy internally, which is used for a variety of purposes. There is a current ongoing effort to improve this through consistency of language and simplification of the overarching structure. This taxonomy is considered the master and the system of record is SharePoint. The lack of consistent tagging of internal and external facing content has caused confusion and there’s a strong desire to consolidate into a single source of truth. Different terminology is used for the same concepts publicly and internally in some cases and this has also resulted in confusion on occasion.
  • 18. Tagging Recommendations Goal: Make it easier for users to find the NAO content they’re looking for and other related content Recommendations: ● Use a single, unified taxonomy and consistent terminology to annotate content with metadata ● Ensure the taxonomy’s design is flexible and enables support for hierarchical layers of tags ● Explore the viability of synchronising SharePoint master taxonomy data to WordPress ● Explore automated tagging of content through analysis of text and extraction of references to other NAO reports using tools such as the Back Catalogue Analyser Pros Cons ● A single taxonomy will ensure consistency and remove ambiguity ● Synchronisation of internal and external taxonomies will reduce administrative effort ● Automated keyword analysis will enable quicker and more complete tagging ● Getting master taxonomy data into WordPress may present some technical challenges ● Automated tagging may be less effective than hand- curated tags
  • 19. Data Insight Many reports are based on or contain statistical analysis of underlying data sets, which are sourced from one or more government departments. There is often a degree of aggregation and processing needed to ensure related data sets are consistent and standardised. This function is performed in-house by data and analytics teams. Data is generally held in a data warehouse and processed using a variety of tools. Tableau and Shiny are the two commercial products which are integrated with the website. There is an internally developed data service and an associated REST API which are used as the basis for several bespoke tools. There is an aspiration toward publication of raw data sets, which is something that has been previously discouraged within NAO, for various reasons. Some small data sets are currently published alongside visualisations in CSV format. Other options that have been previously considered include provision of a public API, either by making the existing internal API publicly accessible or by creating a new one, and making CSV data sets more widely available.
  • 20. Data Recommendations Goal: Expose the underlying data sets that are used within NAO reports and visualisations Recommendations: ● Explore exposing the existing internal REST API publicly with additional access controls if necessary ● Alternatively or additionally, explore the feasibility of providing CSV exports of the raw data used to generate reports and visualisations Pros Cons ● Reusing an existing API saves time, effort and duplication ● CSV exports are simple to create and distribute and widely supported by third party software ● Integration between internal and external systems may present technical and security challenges ● The existing API may not meet all use cases ● No strategic decision on public data access has been taken, so action taken now may be premature
  • 21. Analytics Insight Currently the website is integrated with Google Analytics. Data is made available in Google Data Studio, which is performing well for existing use cases. A review of the Google Analytics implementation and overall analytics pipeline is desired and will likely be outsourced to external experts. Metrics include page views and downloads. The MonsterInsights analytics plugin is already enabled on the site and its efficacy is unclear. There is a desire to enhance analytics capabilities with additional metrics, such as content engagement (progress, view time) and capturing progress through specific user journeys. There is a tension between the need for content engagement metrics and the use of PDFs as the primary consumption format, due to the offline nature of PDF documents. Adobe have made some progress toward enhancing PDF usage tracking, which may warrant further investigation. Dashboards (primarily in Google Data Studio) are the primary consumption method for analytic data. Export to CSV for ad hoc analysis would be of additional benefit. Data Studio may support this to some extent although no research has yet been done to assess its capabilities in this area.
  • 22. Analytics Recommendations Goal: Provide NAO with better visibility of how content is consumed Recommendations: ● Review existing Google Analytics configuration and optimise to provide more granular tracking Assess whether the MonsterInsights plugin is adding value ● Assess content groupings as a technique for capturing progress through specific user journeys ● Review Data Studio usage and explore whether dashboards can be enhanced to deliver new metrics Pros Cons ● Google Analytics is ubiquitous, well understood and free ● Consultancy and advice is plentiful and inexpensive ● Capturing user journeys using built in tools removes the cost and complexity of introducing additional software ● The granularity of journey that can be expressed with content groupings will not be as fine as when using software dedicated to this purpose ● There are potential privacy concerns if user’s personal data is sent to Google
  • 23. Accessibility Insight The website was the subject of a recent accessibility audit, for which it received a score of 7 out of 10. The site scores reasonably well against a selection of high profile accessibility assessment tools. For example, it has an 85% compliance score at www.webaccessibility.com. Anecdotally, there are some known issues with the responsiveness of the site on some device types, particularly smaller screens. Some of the embedded assets which use HTML iframes also have a higher degree of accessibility issues.
  • 24. Accessibility Recommendations Goal: Ensure NAO content can be consumed effectively by users with additional needs and on all device types Recommendations: ● Identify tactical targets for improvement based on the latest audit results and automated scans using standard accessibility tools ● Optimise WordPress templates to increase responsiveness of iframe content to improve visualisations Pros Cons ● The site is already reasonably conformant and targeting tactical improvements removes the need for full rework ● WordPress has excellent accessibility support built in and through plugins which can be leveraged to mitigate some of the failings with embedded assets ● Tactical, layered fixes to embedded assets avoids the need to look at replacing or reworking the entire asset ecosystem ● Fixing accessibility issues in third party assets by manipulating HTML is never going to give results as good as fixing the issues at source
  • 25. SEO Insight Google tooling is also used to some extent already to measure search engine optimisation performance, although this is obviously skewed toward a Google perspective. A WordPress plugin called Yoast is currently active on the site and its efficacy is unclear. No specific SEO concerns have been raised during research, although confidence in the status quo is uncertain.
  • 26. SEO Recommendations Goal: Ensure NAO content ranks high in search engine listings for relevant keywords and related searches Recommendations: ● Optimise existing WordPress templates to ensure that tags and any additional metadata that are introduced are exposed to search engines using standard protocols ● Review content production workflows to ensure content is optimised for SEO ● Review efficacy of the Yoast plugin Pros Cons ● WordPress is heavily optimised for good search ranking out of the box ● There are plenty of plugins available to fine tune results if deemed necessary ● None
  • 27. Security & Compliance Insight The website must be compliant with various privacy legislation, including: ● GDPR/DPA ● PECR Its cookie implementation is not currently compliant with PECR, although there are ongoing efforts to rectify this. Given that the website does process some personally identifiable information (PII), a PII log should be kept and a data privacy impact assessment should be undertaken. No evidence of these was found.
  • 28. Security & Compliance Recommendations Goal: Ensure the NAO website protects sensitive data, is highly resistant to common threat vectors and complies with all applicable legislation Recommendations: ● Explore implementation of identity federation to provide seamless, integrated access control ● Conduct a data protection impact assessment (DPIA) and create a personally identifiable information (PII) log ● Continue ongoing efforts to implement compliant cookie handling Pros Cons ● Integrated access control helps NAO staff manage access centrally and removes the need for additional credentials ● Conducting a DPIA will ensure NAO are able to assess compliance with relevant legislation and identify any gaps ● None
  • 30. Software as a Service (SaaS) Description: Procure a website platform as a commoditised service which is hosted and managed by the supplier on the customer’s behalf Pros Cons ● Relatively inexpensive and highly predictable cost ● Reduction in administrative overhead ● Hence less in-house technical support required ● Lack of flexibility and control ● Some potential for vendor lock-in Supplier Responsibilities Customer Responsibilities ● Hosting, availability, security, performance ● Features and functionality ● Content management ● Configuration
  • 31. Outsourced Development Description: Engage a supplier to create and maintain a website solution independently based on NAO requirements. Can be structured as an ongoing relationship with one supplier or as discrete units of work, potentially across many suppliers. Pros Cons ● Requires very little in-house technical knowledge ● Reduction in administrative overhead ● Relatively expensive ● Lack of technical skills inhibits ability to understand or influence solution ● High risk of vendor lock-in Supplier Responsibilities Customer Responsibilities ● Development ● Infrastructure management ● Content management ● Requirement definition ● Acceptance testing
  • 32. Augmented Development Description: Work collaboratively with a supplier to create a website solution based on NAO requirements. Generally requires building a good working relationship with a single supplier. Pros Cons ● Ability to use supplier only as much as needed, minimising spend ● Ability to leverage a wider set of skills ● Opportunity to transfer skills and knowledge in-house ● Requires a larger (i.e. > 1) internal team to do this well ● Moderately expensive ● Health of supplier relationship is critical to success Supplier Responsibilities Customer Responsibilities ● Development ● Shared infrastructure management ● Content management ● Requirement definition ● Development ● Shared infrastructure management
  • 34. Platform Goal: Provide a well understood, secure, affordable and functional platform on which NAO content can be effectively distributed to its users Other options Limitations Consider another headful CMS platform WordPress is well regarded generally and well understood by NAO so there is no compelling reason to change Commission a bespoke solution from external suppliers Expensive, lack of control and potential vendor lock-in Recruit an internal team to build a bespoke solution Expensive and goes against stated NAO strategy
  • 35. Hosting Goal: Ensure the NAO website is highly available, cost-effective and manageable by NAO in-house staff Other options Limitations Explore hosting a WordPress instance in Azure Additional management overhead and maintenance. Non- strategic.
  • 36. Content Goal: Ensure NAO website users are able to find and consume reports and related content easily Other options Limitations Continue to explore PDF to HTML conversion techniques Exporting from source data will always give better results than converting an intermediate format Create independent production workflows for PDF and HTML Doubles the effort involved in producing content
  • 37. Search Goal: Provide an enhanced search experience across the NAO website Other options Limitations Attempt to improve performance of the Swiftype plugin The Swiftype plugin is not as fully featured Assess other WP search plugins The ElasticPress plugin is considered best in class Build a custom plugin Expensive, requires bespoke external development
  • 38. Tagging Goal: Make it easier for users to find the NAO content they’re looking for and other, related content Other options Limitations Keep internal and external taxonomies synchronised manually Additional manual effort and potential for synchronisation to fail, resulting in inconsistencies Evaluate dynamically generated relations (e.g. from ElasticPress plugin) Dynamic relations will not conform to a predefined taxonomy, although may still give adequate results
  • 39. Data Goal: Expose the underlying data sets that are used within NAO reports and visualisations Other options Limitations Build a new REST API purely for public consumption Additional cost to build and maintain, although it would potentially be easier to secure
  • 40. Analytics Goal: Provide NAO with better visibility of how content is consumed Other options Limitations Explore other WordPress plugins for advanced Google Analytics use cases (e.g. Journey Analytics) Google Analytics built in functionality is powerful, so be aware of increasing costs and diminishing returns
  • 41. Accessibility Goal: Ensure NAO content can be consumed effectively by users with additional needs and on all device types Other options Limitations Explore WordPress accessibility plugins to target specific issues Use of multiple plugins increases management overhead and the likelihood of conflicting behaviour
  • 42. SEO Goal: Ensure NAO content ranks high in search engine listings for relevant keywords and related searches Other options Limitations Explore additional WordPress SEO plugins. Use of multiple plugins increases management overhead and the likelihood of conflicting behaviour
  • 43. Security & Compliance Goal: Ensure the NAO website protects sensitive data, is highly resistant to common threat vectors and complies with all applicable legislation Other options Limitations Retain and improve independent access control Harder to apply effective governance and requires users to maintain additional accounts Remove PII from the website Limits functionality of the site