08 December 2020 - NW2543
Clarke, Ms M to ask the Minister of Public Service and Administration
What security processes has the Government implemented in terms of e-governance systems so that the systems are not compromised?
The Department of Public Service and Administration is mandated by section 94 of the Public Service Regulations toissue the information security standard for the public service, after consultation with the relevant Ministers.
On the 2nd of June 2017 the DPSA and GITOC Security Committee (SCISS) issued the ICT Security Guidelines for implementation by the national and provincial departments within their respective departments.
The purpose of these ICT Security guidelines is to create an enabling ICT security environment and to address the security risks and weaknesses in e-governance systems.
Section 11 of the DPSA ICT Security Guidelines particularly covers the aspects of access management and acquisition of information systems as they relate to securing e-governance systems.
The ICT Security Guidelines cover a number of areas in relation to securing e-governance systems. Those include:
Section 11.7 – Information Systems Acquisitions, Development & Maintenance
Section 11.6 – Access Management
Section 11.10 – Third Party Management
Section 11.11 – Compliance
Section 11.12 – Intellectual Property Rights
The DPSA ICT Security Guidelines are currently being converted into a Public Service Information Security Standard to strengthen compliance.