Skip to main content

Departmental ICT

Volume 493: debated on Thursday 11 June 2009

To ask the Secretary of State for the Home Department with reference to the answer of 3 November 2008, Official Report, column 30W, on departmental ICT, when he expects all of his Department’s IT systems to be fully compliant with ISO 27001 under the new standard set by the data handling report published in June 2008. (278612)

All IT systems across Government are subject to Cabinet Office approved policies and procedures for Information Security Management which are fully compliant with the controls in ISO 27001 and also incorporate the recommendations from the data handling report published in June 2008. Compliance is assessed via a regime known as accreditation.

All IT systems and networks within the Home Office are subject to this continual accreditation process as they enter service for the first time or when significant changes are made to existing systems; there is also a process of periodic review of all accredited systems.