[ad] The service leader for Cloud is now in Australia. Secure, reliable cloud and managed hosting all backed by 24x7x365 Fanatical Support. Create your free account now.
Buy an Seagate Business Storage NAS for your chance to win a holiday
[ad] Purchase a selected Seagate Business Storage NAS to receive a $20 cash-back AND go into the draw to win a $1,000 Flight Centre voucher so you can holiday in the destination of your choice. T&Cs apply.
Great articles on other sites
- Xbox One smashes sales records
- Tech leaders call for speed, ubiquity in NBN rollout
- AIIA urges Hockey to tackle taxes
- IBM accuses Qld govt of trying to ‘rewrite history’
- Newlease undergoes reverse takeover to score ASX listing
- Australia Post loses battle | The Australian
- Start-ups leap at Telstra's accelerator
- Labor won't hand over NBN advice to Turnbull
- Adelaide Uni on hiring blitz for tech transformation
- Human Services to cut 56 IT jobs
How mobile and social media affect your Customer Experience strategy
[ad] How will the adoption of mobile devices and social media affect your Customer Experience strategy? Are you reaching your organisation's customers through these touch points? Click here to download a whitepaper by Fifth Quadrant examining consumer and business attitudes to these new contact channels.
50 things top IT pros need to know
[ad] This 18 page TechRepublic whitepaper explores 10 things you should know to become an epic IT manager, 40 other essential tips to advance your IT career and practical guidance for starting an IT consulting business. Click here to access the whitepaper.
Enterprise IT, News - Written by Renai LeMay on Tuesday, July 30, 2013 15:42 - 7 Comments
“A real barrier”: Sports Commission CIO
speaks up on new Govt cloud policy
news A chief information officer from a minor agency has publicly criticised the Federal Government’s new risk management guidelines on storing offshore data, stating that they constitute “a real barrier” to the adoption of public cloud technologies in the public sector.
Earlier this month, the Federal Government released a new cloud computing security and privacy directive (PDF) which requires departments and agencies to explicitly acquire the approval of the Attorney-General and their relevant portfolio minister before government data containing private information can be stored in offshore facilities. Data which doesn’t include personal information — and thus isn’t subject to privacy regulations — won’t suffer the same conditions.
Unlike existing cloud computing policies used in the Federal Government, the policy did not emanate from either the office of the whole of government chief information or technology officers, key parts of the Australian Government Information Management Office which helps set central government IT strategy and policy.
Instead, the new policy appears to be a document created by the Attorney-General’s Department, as part of the Protective Security Framework which it administers to help ensure the physical and information security of the Federal Government as a whole. At the time the document was released, Attorney-General Mark Dreyfus, issued the following statement:
“The policy will aid decision-makers in determining when to allow the use of offshoring or outsourcing on a case-by-case basis. I have paid special attention to the security of personal information, which people expect will be treated with the highest care by all organisations, but by government in particular.”
“Safeguards have been incorporated so that before personal information can be stored in the cloud, the approval of the Minister responsible for the information, and my own approval as Minister for privacy, must be given. This is to ensure that sufficient measures have been taken to mitigate potential risks to the security of that information.”
However, the new policy raised eyebrows inside Federal Government IT circles. And last week some of that criticism made it into the public domain courtesy of Steven Stolk, the chief information officer at the Australian Sports Commission, in comments first reported by iTNews.
“The new policy from AG to have any public cloud with personal info approved by Minister & [Attorney-General] is a real barrier to use public cloud,” wrote Stolk on his Twitter account. “The flow chart shows all flow that has personal info going to the Minister!” And then, the CIO added: “The process just seems too risk averse. Privacy risk outways security, which can be assessed at the agency level.”
Although the Australian Sports Commission represents a relatively minor part of the Federal Government’s IT spend, Stolk himself is a veteran in government technology circles. The executive has served the ASC as CIO for four and a half years, and has also held senior technology positions at the Civil Aviation Safety Authority, as well as at IT services company KAZ (now part of Fujitsu).
Stolk told iTNews, which first reported this story (we recommend readers click through to read iTNews story as well; it contains further details), that his views were personal and not the views of his agency; but he also added that there was a disconnect on the issue between the Attorney-General’s Department and AGIMO.
I strongly agree with Stolk. I published an extensive analysis of this precise situation on Delimiter 2.0 several weeks ago (paywalled), including a detailed criticism of the concept of “risk” as detailed in the new policy. My key introductory paragraph:
“The Federal Government has taken many positive steps forward in the past year with respect to freeing up its departments and agencies to adopt the new class of cloud computing technologies. But the release of an overly bureaucratic policy this month on offshore data storage has the potential to set that progress back substantially, relying as it does on several outdated concepts of risk management in IT projects.”
To tell you the truth, I’m not surprised to see a mid-level CIO like Stolk expressing his opinion on this issue in public. The launch of the new policy must have come as a surprise to many IT executives in the Federal Government. From AGIMO and departments such as DBCDE, they’re getting the view that cloud computing is an emerging paradigm which they need to consider in all their IT purchases. But from the Attorney-General’s Department, they’re getting the opposite view — roadblocks and all.
The fact that the CIO chose to speak out reveals that the Attorney-General’s Department didn’t consult enough internally in the Federal Government on this one. It seems obvious that if Stolk was surprised by the release of this policy, then many others in similar positions would have been surprised as well. I applaud Stolk for at least having the courage to raise the issue in public in the diplomatic manner he did, and we need more of this kind of effort from senior public servants across a wide range of areas. In this context, the few sentences which Stolk put on Twitter about the issue, as his personal view, would very much represent the tip of the iceberg in terms of this situation. I’ll be seeing if I can plumb some of those depths over the next several months.
Image credit: Steven Stolk
Latest Delimiter 2.0 articles (subscriber content)
|Politicians from Australia’s major parties need to stop issuing ludicrous blanket pardons for the intelligence community’s ongoing misdemeanours and start applying a basic modicum of transparency and accountability to this important national security function.|
|The independent pro-fibre National Broadband Network movement is doing a far better job of promoting Labor’s Fibre to the Premises-based NBN policy than Labor itself. When is Labor going to wake from its slumber and start supporting this scrappy but energetic grassroots network of activists?|
|Ziggy Switkowski's first substantial public appearance since being appointed NBN Co chief executive has starkly demonstrated just how different he is from his predecessor, Mike Quigley, and just how strictly he will adhere to the guidelines which his patron, Communications Minister Malcolm Turnbull, has set for him.|
|Australian technology companies have been virtually absent from the the nation’s public stockmarket over the past decade as the stigma of the dot com bust took its toll on investor confidence. But a clutch of new listings planned for the closing months of 2013 shows renewed interest in the sector and that local entrepreneurs are smelling money in the air once again.|
|NBN Co’s Strategic Review process gives the company an unmissable opportunity to re-evaluate the early decision to deploy its FTTP network primarily through Telstra’s underground ducts. The company and its new Coalition masters must now seriously consider deploying more fibre aerially on power poles in an effort to speed up its rollout substantially.|
|That moment which many Australian technologists fervently hoped for but never expected to see has come to pass: Simon Hackett has been appointed to the board of the National Broadband Network Company. But what questions should the Internode founder be asking NBN Co’s executive management team? Here’s five ideas to start with.|
|The rapid replacement of respected NBN Co chief operating officer Ralph Steffens with a Telstra executive who appears less experienced with fibre rollouts but better politically connected represents a key signal that NBN Co’s senior executive hiring process has now become completely politicised and is no longer independent from the Federal Government.|
Enterprise IT, Featured, News - Dec 9, 2013 11:35 - 0 Comments
More In Enterprise IT
- Harbour City Ferries goes Microsoft across the board
- Payroll disaster: Queensland sues IBM
- End of an era: Oracle Australia’s ‘safe hands’ leaves
- Qld launches whole of government IaaS panel
- Defence finally allows staff iPhones, iPads
News, Telecommunications - Dec 9, 2013 17:23 - 33 Comments
More In Telecommunications
- NBN Co still has 1Gbps on way
- Delimiter appeals Turnbull Blue Book censorship
- Final closure: TPG buys AAPT for $450m
- NBN FTTN analysis “devastating” for Coalition
- NBN Co internal FTTN analysis: Turnbull refuses to retract inaccurate claim
Industry, News, Startups - Dec 9, 2013 15:40 - 4 Comments
More In Industry
- The Australian IT sector needs a stronger voice
- Xbox One goes off with a bang … but will the PS4 launch eclipse it?
- It’s not just Freelancer: Aussie tech IPOs are back in general
- Freelancer’s IPO: A billion reasons to care
- Australian retailers online: Late to the party and much to do
Blog, Digital Rights, Gadgets - Dec 9, 2013 11:15 - 20 Comments
More In Digital Rights
- Censored: Appeal for AG’s Blue Book fails
- Senate to force TPP publication
- Global privacy group files formal ASD complaint
- Labor open to surveillance discussion
- Snowden an “American traitor”, says Australia’s Attorney-General