4. Building on the 2009 Self-Assessment
The 2009 Self-Assessment exercise asked each unit within the collegiate University to assess their current approach to IT operations, management and security against recommended best practice guidelines (provided in the form of a self-assessment questionnaire). Every unit that completed the questionnaire was sent a confidential report based on their responses. The reports helped units to focus on areas where further resources may need allocating and to highlight if similar units have particular needs. Further detail on the Self-Assessment Questionnaire is available from the Office of the Director of IT website: 2009 Self-Assessment
The Advisory Group considered the responses gathered through the self-assessment process in detail. They summarised their thoughts and recommendations in the following: Report - 2009 Self-Assessment Exercise (link to Office of the Director of IT website, access restricted to Oxford only).
The information gathered helped the Advisory Group to understand where further attention, resource, and best practice is needed to guide units of the collegiate University in their approach to IT operations, management and security. In general, the best practice guidelines on information handling proved to be an issue for all units within the collegiate University. However, the questionnaire also gave units the opportunity to comment and these comments proved effective in helping the Advisory Group understand why information handling proved to be an issue, where gaps in policy exist and what can be provided to help close those gaps. The comments have been instrumental in guiding the 2010/2011 follow-up activity. A summary of the comments provided through the self-assessment exercise is available: Response to Comments (link to Office of the Director of IT website, access restricted to Oxford only).
Up: Contents Previous: 3. Information Security Toolkit Next: 5. Project Team