• Contact Us
  • Complaints and Feedback
  • Media Contacts
• About Us
  • Public Interest Disclosure
  • Freedom of Information
• Publications
  • Annual Reports
  • Disability Plan
• News
• Careers
  • Your Career
  • Work-Life Balance
  • Your Development
  • Recruitment Programs
  • Current Job Opportunities
  • How to Apply
  • Pool Recruitment
• Graduate Program
  • Mid-Year Intake
  • Graduate Program
  • Graduate Profiles
    • State Revenue
    • Building Mgmt and Works
    • Government Procurement
    • Shared Services
    • Corporate Services
    • Public Utilities Office
  • Role Descriptions
    • Building Mgmt and Works
    • Government Procurement
    • Corporate Services
    • Public Utilities Office
    • State Revenue
  • Key Dates
  • Recruitment Process
  • Graduate Contacts

• About Building Management and Works
  • News
  • Publications
  • Careers
  • Links
• Policy
  • Building Policy and Procedures
  • Building Contracting Services
  • Building Industry Liaison
  • Sustainability and Heritage
  • Apprenticeships
  • Korndin Kulluch
• Strategic Projects
• New Buildings
  • Planned Capital Projects
  • Percent for Art
• Building Maintenance
  • Services
  • Tools
  • Asbestos Management
• Office Accommodation
  • GOA Master Planning
  • Master Planning 2010-12
  • Master Planning 2012-18
  • Gordon Stephenson
  • Heritage Buildings
  • Dumas House
  • Albert Facey House
  • Office of the Premier
• Regional Programs
  • Special Projects
  • Service Alliance 2012
• Tenders
• Government Architect
  • Better Places and Spaces
• Supplier Portal
  • Office Accommodation
  • PACMAN
  • Forms and Support Material
  • Contacts
• Contact Building Management and Works
• Works Reform
  • Publications
• Information for Subcontractors
• Fremantle Prison (ext)

• About State Revenue
  • Information Exchange
• I am...
  • I am buying my first home
  • I am a business owner
  • I am buying property or land
  • I am a tax professional
  • I am seeking a subsidy
  • I am interested in education
• Duties
  • Insurance Duty
  • Landholder Duty
  • Transfer Duty
  • Vehicle Licence Duty
  • Rates of Duty
  • Forms and Publications
  • Duties A - Z Topics
• Land Tax
  • Forms and Publications
  • Review and Appeals
  • Calculator
  • Tax Certificates
  • Electronic Advice of Sale
  • Payments
  • Exemptions
• Pay-roll Tax
  • Forms and Publications
  • Review and Appeals
  • Revenue Online
  • Frequently Asked Questions
  • Exemptions
  • Grouping Exclusions
• Revenue Online
  • Revenue Online Services
  • Log Into Revenue Online
• First Home Owners
  • Guide for Application Form
  • How to Apply
  • Duties Rate
  • Forms and Publications
  • Review and Appeals
  • Approved Agents
  • Frequently Asked Questions
  • Glossary
• Energy Concession Extension Scheme
  • Eligibility Criteria
  • Rates
  • How to Apply
  • Frequently Asked Questions
  • Publications
• Other Schemes
  • Life Support Subsidy
  • Pensioners Rebate
  • Swimming Pool Subsidy
  • Thermoregulatory Dysfunction Energy Subsidy
  • Pastoral Leases
  • Indian Ocean Territories
• Calculators
• Publications and Resources
  • Commissioner's Practice
  • Rulings
  • Customer Service Charter
  • Legislation
  • Revenue Offices
• Customer Education
• Reviews and Appeals
  • Objection and Review
• Compliance
  • Our focus
  • Audits and Investigations
  • Record Keeping
• Contact State Revenue
  • Administrative Enquiries
  • Anonymous Information
  • Where We Are
  • Where to make payments
  • First Home Owner Grant
  • Land Tax Enquiries
  • Pay-roll Tax Enquiries
  • Duties Enquiries
  • Revenue Online
  • Revenue Compliance
  • Perth Parking
  • Other Scheme Enquiries

• Government Procurement
• About Government Procurement
  • Procurement Glossary
• I'm a Buyer
  • Decision Chart
    • Direct Purchasing up to $5,000
    • Purchases between $5,001 and $20,000
    • Purchases between $20,001 and $150,000
    • Purchases over $150,000
  • Getting Started
  • Purchasing Methods
  • Regional Buying
• I'm a Supplier
  • Finding Opportunities
  • Government Purchasing
  • Open Tender Process
• I'm a Contract Manager
• State Fleet
• Not-for-Profit
  • Tendering Opportunities
  • CSPRC
  • Feedback and Complaints
  • Approved CUA Users
• Cyber Security
  • Overview and Approach
  • Policy
    • Good Governance
    • Model Policies
  • Resources and Tools
  • Inter-Agency
  • Other Services
• Cloud Computing Resources
• Website Governance Framework
  • Website Policy
  • Domain Name Policy
  • Website Planning Guide
  • Standards and Guidelines
  • Web Accessibility
    • Approach
    • Governance and Reporting
    • Minimum Information Requirements
    • Consultation
    • Captioning requirements
    • Resources
  • Website Reporting
  • Definitions and Help Notes
• ServiceNet
• Templates and Guides
  • Agency Procurement Delegation and Exemption Matrices
  • Community Services Templates, Guides and Conditions of Contract
  • Goods and Services Templates, Guides and Conditions of Contract
  • Procurement Toolkit
  • Purchasing Card Guidelines
  • Archive Templates, guides and conditions of contract
  • Archived Community Services Templates, Guides and Conditions of Contract
• Policies
  • Delivering Community Services in Partnership
  • State Fleet Policy and Guidelines
  • State Supply Commission Procurement Policies
• Procurement Initiatives
  • AFPP
  • Gateway
    • Gateway Reviews
    • Gateway Review Process
    • Gateway Reviewers
    • Reviewer Roles
  • Procurement Reform
  • State Fleet - Environmental Focus
  • WA Government Purchasing Card Program
• Procurement Training
  • Better Buying for Government Buyers
  • Contract Development Management System Training
  • Procurement Vocational Program
• Publications and Reports
  • Buyer Publications
  • Gateway Publications
  • Supplier Publications
  • Not-for-Profit Publications
  • Reports
  • Professional Papers and Presentations
• News
• Events
  • Buyer Events
  • Gateway Events
  • Not-for-Profit Workshops and Events
  • Supplier Events
• FAQ
  • Buy Local Reporting FAQs
  • Gateway FAQs
  • State Fleet FAQs
  • UNSPSC FAQs
• Contact Government Procurement

• About Shared Services
  • Our Leaders
  • Our Organisation
    • Shared Service Centre
  • Our Current Clients
• Services We Provide
  • Finance
    • Financial Management
    • Order to Cash
    • Planning and Policy
    • Procurement
    • Procure to Pay
    • Record to Report
  • Human Resources
    • Personnel/Payroll Services
  • eBusiness Availability
• Suppliers to Government
  • BMW Suppliers
  • Receiving Orders and Payments
  • Recipient Created Tax Invoices
  • Keeping Your Details Up-to-Date
  • iSupplier
  • Who to contact
• Decommissioning Office
• Publications
• News
• Related Links
• Contact Shared Services

• About Public Utilities Office
• Energy in WA
  • WA's energy industry
    • Legislation and codes
    • Licencing and exemptions
    • Markets, regulation and complaints
    • Facts and figures
    • Industry links
  • Electricity
    • Generation
    • Networks
    • Retailers
    • Wholesale Electricity Market
    • Government electricity corporations
    • Electricity pricing
  • Gas
    • Production
    • Pipelines
    • Distribution and storage
    • Retail market
    • Gas pricing
  • Renewable energy
    • Bioenergy
    • Geothermal
    • Hydro
    • Solar
    • Marine
    • Wind
  • Emergency Management
• WA's Energy Future
• Energy Initiatives
• Events
  • Energy in WA 2013
• Businesses and Government
  • Electricity
    • Electricity prices
  • Gas
    • Gas prices
  • Planning renewable energy projects
    • Renewable resource quality
    • Electricity networks and energy users
    • Land use planning and regional development
    • Solar maps and data
    • Wind maps and data
    • Geothermal maps and data
    • Publications
• Homes and Communities
  • Electricity
    • Electricity prices
  • Gas
    • Gas prices
  • Help me pay my bills
    • I can’t pay my bills
    • Concession card holders
  • Renewable energy help
    • Help me go solar
    • Residential feed-in tariff scheme
  • Schools
• Publications

Good Governance Guidelines for Securing the WA Public Sector’s Electronic Information

In 2010 the Public Sector Commission produced the Good Governance Guidelines for Securing the Western Australian Public Sector’s Electronic Information (the Good Governance Guidelines) to address issues identified by the Auditor General in a series of Information Systems Security Audits undertaken over the previous 4 years. The Good Governance Guidelines were originally produced in a brochure format and distributed to agency CEOs and DGs. They are reproduced here with a link to download a good practice checklist.

Aim

To support agency executives in achieving their information security responsibilities.

Scope

Measures relating to the confidentiality, integrity and availability of computing equipment and information that is processed, stored and communicated by electronic or similar means in the Western Australian Public Sector.

What are the Risks?

Without adequate and appropriate measures, agencies are leaving themselves vulnerable to computer system failures, unauthorised access to information, loss of information, fraudulent activity, reputational damage and loss of public confidence.

What’s Causing the Risks?

Many agencies are unaware of, or in some cases ignore, the importance of effectively managing the security of their information systems.

A lack of fundamental controls to protect information means that there is a real and significant risk of inappropriate disclosure or access to the information held by agencies. The Auditor General has found that in many cases agencies have no way of knowing if data theft or manipulation has occurred. Weaknesses in information systems controls can compromise the confidentiality, integrity and availability of computer systems themselves, potentially impacting on delivery of key services to the public and financial loss.

Who Owns These Risks?

On 27 March 2006 Cabinet directed that the Director General/Chief Executive Officer of each Government agency is responsible for ensuring their agency implements an appropriate level of information and Internet security. The Director General/Chief Executive Officer is the custodian of the information that is processed, stored and communicated within each agency and is responsible for the effective management of their information systems.

What Should be Done?

Good practice checklist for DGs and CEOs

1. Establish accountability and authority for information security matters by allocating management of information security to a senior executive.
2. Ensure that information security is integrated into corporate strategies that support the overall business mission.
3. Ensure that an information security risk management plan is in place and kept updated.
4. Ensure that a risk management approach guides formulation of information security policies.
5. Direct regular (e.g. quarterly) reports on information security. This may be as simple as a ‘traffic light’ snapshot report, and must at least include:

• significant risks;
• recommended actions/remediation of the risks; and
• actions taken since the last report to facilitate continual improvement. 

Refer to A Checklist for Your Ageny's Current Information Security Practices  for details.

For more information contact the Cyber Security Team.