Conference item icon

Conference item

A pilot study investigating the process of risk assessment and re-accreditation in UK public sector systems

Abstract:
The provision of security of information and its supporting ICT infrastructures within the UK Public Sector is long-standing and well established, underpinned by a wide range of standards and literature. For the many security practitioners that are employed in the sector, a number of important concerns have experientially emerged over several iterations of policy and standards that have been developed over time to govern this activity. The aim of this qualitative pilot study was to explore these concerns from the perspective of security practitioners employed in the sector. Data was collected from six security practitioners via semi-structured interviews. Subsequent transcripts were analysed using a Thematic Analysis approach. This identified four significant themes that suggest that re-accreditation rarely occurs outside of the formal accreditation cycle, and point to the underlying reasons why this is the case. Given that the National Technical Authority (NTA) is undertaking a comprehensive review of Information Assurance in the Public Sector, this pilot study is well-timed. This qualitative investigation of the issue is novel, and while aspects of these themes may be recognised anecdotally by consultants in this field, this pilot study provides an inductive, data-driven account of the issues with re-accreditation that transpired both within and across participants transcripts. Finally, this study gives some indication of potential further research that could be undertaken in the area.
Publication status:
Published
Peer review status:
Peer reviewed

Actions

  • Cite

  • Print

Access Document

Files:

Authors

More by this author
Institution:
University of Oxford
Division:
MPLS
Department:
Computer Science
Role:
Author
More by this author
Institution:
University of Oxford
Division:
MPLS
Department:
Computer Science
Role:
Author
More by this author
Institution:
University of Oxford
Division:
MPLS
Department:
Computer Science
Role:
Author

Publisher:
York Doctoral Symposium
Host title:
York Doctoral Symposium on Computer Science and Electronics
Journal:
York Doctoral Symposium on Computer Science and Electronics More from this journal
Pages:
39-46
Publication date:
2015-10-28
Acceptance date:
2015-10-02

Keywords:
Pubs id:
pubs:580299
UUID:
uuid:b40b4182-908d-4182-bea1-9bf849a0d0e7
Local pid:
pubs:580299
Source identifiers:
580299
Deposit date:
2015-12-21

Terms of use

Views and Downloads





If you are the owner of this record, you can report an update to it here: Report update to this record

TO TOP