spanna 66 Posted March 27, 2018 Share Posted March 27, 2018 http://www.manxradio.com/news/isle-of-man-news/government-aims-to-be-fully-compliant/ So the Gov claims they will be fully compliant with the Data security regulations coming in yet last year happily dumped off the only two Island-based computer service providers with ISO27001 (Information security management) for two companies who not only don't have any data security policy/procedures but don't even have ISO9001 (Quality management). Basically the government thought the public's data and personal information is not worth the same as saving them a bit of money on the Computer service tenders. Lovely. Quote Link to post Share on other sites
woolley 19,199 Posted March 27, 2018 Share Posted March 27, 2018 I find it's generally the way with govt. Whatever they tell you in meetings, whatever they promise in policy releases, when it comes to the crunch they will just say that the gold standard is certainly aspirational, but this time we'll go with the lowest bidder, thanks. Of course, it doesn't always end well. 1 Quote Link to post Share on other sites
craggy_steve 1,174 Posted March 27, 2018 Share Posted March 27, 2018 2 hours ago, spanna said: http://www.manxradio.com/news/isle-of-man-news/government-aims-to-be-fully-compliant/ So the Gov claims they will be fully compliant with the Data security regulations coming in yet last year happily dumped off the only two Island-based computer service providers with ISO27001 (Information security management) for two companies who not only don't have any data security policy/procedures but don't even have ISO9001 (Quality management). Basically the government thought the public's data and personal information is not worth the same as saving them a bit of money on the Computer service tenders. Lovely. There are far more than two IoM computer service providers with 27001 so which two are you referring to as being dumped, and which two have replaced them? I'm assuming you mean for a specific type of service? Quote Link to post Share on other sites
P.K. 5,223 Posted March 27, 2018 Share Posted March 27, 2018 5 hours ago, woolley said: I find it's generally the way with govt. Whatever they tell you in meetings, whatever they promise in policy releases, when it comes to the crunch they will just say that the gold standard is certainly aspirational, but this time we'll go with the lowest bidder, thanks. Of course, it doesn't always end well. Unfortunately they go with the lowest bidder whether it represents value for money or not. But then who would know....? Quote Link to post Share on other sites
gettafa 6,542 Posted March 27, 2018 Share Posted March 27, 2018 If there is a data leak then the Department Head will lose their job and so will the Minister. Will work nicely. Instead, do it the 'manx' way, a bit wishy-washy, more laissez-faire, rather clueless but of course very swaggery and superficially robust: If there is a data leak then the Department Head will lose their job and so will the Minister lessons will be learned. 1 1 Quote Link to post Share on other sites
Non-Believer 13,347 Posted March 27, 2018 Share Posted March 27, 2018 (edited) 31 minutes ago, gettafa said: If there is a data leak then the Department Head will lose their job and so will the Minister. Will work nicely. Instead, do it the 'manx' way, a bit wishy-washy, more laissez-faire, rather clueless but of course very swaggery and superficially robust: If there is a data leak then the Department Head will lose their job and so will the Minister lessons will be learned. Completely sums up the spineless, back-covering, self-preservation attitude that exists throughout both central and local Govt on IoM. Believe me, I see it on a daily basis. "Lessons will be learned". No, they're not, because the real mantra is, "We always look forward and never look back". And we've even heard that in Tynwald (Eddie L.). Which conveniently forgets and deliberately overlooks what's gone wrong before. Regardless of total incompetence and lack of qualification. Regardless of total lack of management ability. Regardless of being in post because of being a "mate" or politically convenient. And it doesn't matter because the tax/ratepayer is paying through the nose for it every time. And those tax/ratepayers have little redress. Because it's not the elected being discussed in this post. It's the unelected CS career empire at all levels. Central and LA. The money supply (Joe Public) is being taken for a ride. And knows nothing about it except being continually asked for more money to pay for it. Edited March 27, 2018 by Non-Believer 3 2 Quote Link to post Share on other sites
CharlieBrown 717 Posted March 27, 2018 Share Posted March 27, 2018 Hey these guys provide employment for the mentally ill, they are the good guys leave them alone! Quote Link to post Share on other sites
Neil Down 8,016 Posted March 28, 2018 Share Posted March 28, 2018 9 hours ago, CharlieBrown said: Hey these guys provide employment for the mentally ill, they are the good guys leave them alone! They employ you then... Quote Link to post Share on other sites
spanna 66 Posted March 28, 2018 Author Share Posted March 28, 2018 (edited) 22 hours ago, craggy_steve said: There are far more than two IoM computer service providers with 27001 so which two are you referring to as being dumped, and which two have replaced them? I'm assuming you mean for a specific type of service? Typhoon house and Skanco business systems. They did the printers and desktop support. The government went with Argon and It works. Neither had any ISO standards. Yet both 9001 and 27001 was a requirement for the gov tender. It seems if you quote low enough the Gov will ditch off any requirement especially any that are in place to protect the publics information and data. Edited March 28, 2018 by spanna 1 1 Quote Link to post Share on other sites
craggy_steve 1,174 Posted March 28, 2018 Share Posted March 28, 2018 @spanna Agreed, it seems pointless to specify requirements in a tender and then go to suppliers who don't appear to meet the specs. The problem, from past experience, is that most Gov't tender scoring is heavily weighted to favour price so if a factor is scored instead of being a mandatory go/no qualifier then lowest price will almost always trump quality. 1 Quote Link to post Share on other sites
Albert Tatlock 12,207 Posted March 28, 2018 Share Posted March 28, 2018 Security. Shocking. Quote Link to post Share on other sites
mannin 16 Posted March 28, 2018 Share Posted March 28, 2018 (edited) On 27/03/2018 at 5:02 PM, spanna said: http://www.manxradio.com/news/isle-of-man-news/government-aims-to-be-fully-compliant/ So the Gov claims they will be fully compliant with the Data security regulations coming in yet last year happily dumped off the only two Island-based computer service providers with ISO27001 (Information security management) I'm not sure that statement is correct. I think that other computer service providers have 27001 and 9001 a quick bit of Googleing tells me that Manx technology group and wimanx (not sure if wimanx qualify as computer service company even with their current radio ads) have 27001 and 9001. I think that synapse have some iso certs. I could poke at Google for longer to check on other companies but it's getting pretty late. Are you sure about argon and IT works? Edited March 30, 2018 by mannin Quote Link to post Share on other sites
Yin & Yang 378 Posted March 29, 2018 Share Posted March 29, 2018 On 27/03/2018 at 5:13 PM, woolley said: I find it's generally the way with govt. Whatever they tell you in meetings, whatever they promise in policy releases, when it comes to the crunch they will just say that the gold standard is certainly aspirational, but this time we'll go with the lowest bidder, thanks. Of course, it doesn't always end well. Unfortunately this is so true! Unfortunately the cheapest at something important is better than an approved company. Quote Link to post Share on other sites
spanna 66 Posted April 1, 2018 Author Share Posted April 1, 2018 On 29/03/2018 at 12:39 AM, mannin said: I'm not sure that statement is correct. I think that other computer service providers have 27001 and 9001 a quick bit of Googleing tells me that Manx technology group and wimanx (not sure if wimanx qualify as computer service company even with their current radio ads) have 27001 and 9001. I think that synapse have some iso certs. I could poke at Google for longer to check on other companies but it's getting pretty late. Are you sure about argon and IT works? Ah yes just seen MTG got it in Nov last year. They provide server support for the Manx gov so at least that's something for Publics data security. As for Argon and IT works, they definitely dont and from hearing things on the grapevine they haven't got a hope in hell of getting anywhere near them. Quote Link to post Share on other sites
Albert Tatlock 12,207 Posted April 2, 2018 Share Posted April 2, 2018 Like a corporate piece of paper will make a huge difference. One bad apple even in a secured barrel can still turn things sour. Just look at the release of the latest leak, the paradise papers. Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.