ICT Standardsand Guidelines

Findings and Recommendations

B. ChatterjeeChief Technology Officer, CNSI

Objectives of this Session

To introduce the global recommendations of the Project To point to specific recommendations To present the Legal Framework recommendations

Over and above the specificStandards and Guidelines

The Project arrived at 3 types of Recommendations

The Three Types of Recommendations

SpecificRecommendations

GlobalRecommendations

13 Segments

LegalRecommendations

1) Segment Specific Recommendations

Within each segment policies were presented These proposed recommendations to be followed specifically

in that area of interest Some examples . . . .

Example: Policies for Quality Management

Quality Management must be part of all ICT processes and projects.

Quality Management must be applied on both internal and external ICT processes.

Quality Assurance units must be setup to handle all such activities.

Follow up on all Quality Assurance audits and reviews must be performed.

Sufficient resources must be provided for such activities.

Example: Policies for Data Integrity and Security

Clear procedures should be initiated to implement such processes.

A discipline must be implemented to monitor and control their proper use

Research into new breaches, security technologies and other information integrity methods should be ongoing.

A proper legal framework needs to be implemented to handle situations where security breaches occur.

Awareness at all levels should be promoted to ensure that information integrity and security policies are known to all concerned.

2) The Global Recommendations

Initiate Strategic ICT Planning Implement Centralized and Shared Information Provide a Legal Framework for ICT Resources and

Processes Implement a Comprehensive ICT Resources Inventory Recommendations for ICT Human Resources Policies for Project Management Improve the Maturity of Software Development Processes Recommendations for ICT Specific Procurement Apply Good ICT Practices

3) Legal Recommendations

Introduce Vehicle and Procedure for Implementation Introduce Mandatory ICT Standards and Guidelines Recommended Procedure: Law Promulgated by the Parliament Roles:

LIBNOR Ministries and Agencies Council of Ministers Ministerial ICT Committee

Introduce an Implementation Authority within Each Ministry or Agency Implement a Monitoring Process and a related Authority Implement an ICT Monitoring Agency Implement laws regarding

Electronic Crimes The Protection of ICT Property and Information

Salam Yamout, Jim Peterson and Akram Najjar

will now present various segments