• NEW Information Security Management Services CUA

    A new Common Use Arrangement (CUA) Information Security Management Services has been developed.

    The CUA is designed to help government agencies assess and manage their cyber security risks.

    Contract Manager Karoline Kolman explains the benefits of this new CUA.

    “It gives agencies access to suppliers specialised in reducing vulnerability and increasing the effectiveness of their information security systems.”

    Agencies are required to develop and maintain an information security framework in line with the ISO 2700 1/2/5 series of standards.

    “A practical Healthcheck Tool will be available to help you get an idea of where your agency is at and where it should be when it comes to data security.”

    “You may have the necessary expertise in-house to develop the policies and capabilities required to meet the standards, but if you don’t, there is a list of pre-qualified suppliers that will be able to assist you,” Karoline said.

    The four categories on offer are:

    • Consultancy and advisory;
    • Auditing and compliance;
    • Training and awareness; and
    • Testing services.

    This CUA should be in place next month for agencies to utilise the services available.

    Agencies that utilise external contractors for cyber security services must use this CUA. It is a ‘pick and buy’ arrangement, although agencies are encouraged to get a quote for a scope of works to achieve a value for money outcome.

    For more information on this CUA please contact Contract Manager Karoline Kolman

    Published date: 24 February 2012