Comments on: Information Governance: The Dirty Harry Strategy http://www.colin-beveridge.com/index.php/information-governance-the-dirty-harry-strategy/ joined-up management for a joined-up world ™ by Colin Beveridge Mon, 19 Dec 2011 17:34:00 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Philip Virgo http://www.colin-beveridge.com/index.php/information-governance-the-dirty-harry-strategy/comment-page-1/#comment-302 Philip Virgo Mon, 01 Dec 2008 08:29:24 +0000 http://www.colin-beveridge.com/?p=717#comment-302 We have already had the disasters - some published, others not. People have indeed died as a result of leaks from witness protection programmes or medical records. Multi-million pound business have been based on routines for organising such leaks - including, for example, break-ins to computer forensics labs or data centres to steal the hard drives. The first issue is whether there is the WILL to address the "wetware" issues - and that means organising political (not just professional/technical) activity. The second is whether there is sufficient professional/technical consensus on what should be done to move towards holistic systems whcih embed "security by default", removing the temptation to bypass clunky, retrofitted, add-on processes - the "e-immodium" in myu most recent blog posting. We have already had the disasters – some published, others not. People have indeed died as a result of leaks from witness protection programmes or medical records. Multi-million pound business have been based on routines for organising such leaks – including, for example, break-ins to computer forensics labs or data centres to steal the hard drives.

The first issue is whether there is the WILL to address the “wetware” issues – and that means organising political (not just professional/technical) activity.

The second is whether there is sufficient professional/technical consensus on what should be done to move towards holistic systems whcih embed “security by default”, removing the temptation to bypass clunky, retrofitted, add-on processes – the “e-immodium” in myu most recent blog posting.

]]>