The Ministry of Justice (MoJ) is working on a new set of policies, standards, guidelines and procedures to improve its IT security.
It has indicated the intent to create a ‘stack’ for its digital and technology delivery teams, and its suppliers, to understand their relevant responsibilities and to provide guidance on good security.
The ministry is in the market for a supplier to support the plan by carrying out an analysis of its existing IT security documentation over the next 12 months. This should feed into the development of new policy and revising the relevant documents.
According to the procurement notice, the resulting guidance should free up the MoJ’s security specialists to focus on more complex problems.
Its security and privacy team previously retained technical writers to review its information security policies and guidance, but the extent of the task requires further support.
This marks a further step in the MoJ’s effort to strengthen its cyber security arrangements, following the recent setting up of a security baseline for the use of the Amazon Web Services cloud. This is aimed at providing its digital teams with a “gold standard” for their use of AWS systems while allowing latitude for when they need to do things differently.