Background
Between July 2006 and September 2007, an ASE CLAS consultant was engaged to provide client-side Information Assurance for the HMPS Phoenix Shared Service Centre.
Approach
- Advising suppliers on appropriate security architectures and the correct preparation of Risk Management and Accreditation Documentation Sets (RMADS) as required by HMG InfoSec Standards.
- Acting as an advisor to the HMPS Accreditor during reviews of security architectures, RMADS, security policies and Security Operating Procedures.
- Determining and analysing risks, threats and vulnerabilities and their applicability to the project environment throughout the lifecycle.
- Designing an appropriate, accreditable, network architecture to allow the secure interconnection of a GSi-connected (RESTRICTED/IL3) application network with a PROTECT-PRIVATE (IL2) telephony network to enable the efficient and secure operation of the customer contact centre.
- Specifying business continuity requirements to ensure Availability of the services, reviewing supplier proposals and assisting in recovery exercises.