FOI Request

The request was partially successful.

Sir/Madam,

I wish to make a request under the Freedom of Information Act. The
following questions and information I wish to have sent to me are
as follows:

Provide, name, address and telephone number for the following
people:
• Senior Information Risk Owner
• Governance Manager
• Information Security Officer/Manager
• Information Technology Security Officer/Manager
• Caldecott Guardian

PCI-DSS
Does your organisation process electronic payment cards?
How much money is processed from electronic payment cards per
annum?
How many electronic payment card transactions are processed per
annum?
Are you PCI-DSS compliant?

ISO 27001
Are you or have you considered becoming ISO 27001 compliant or
certified?

Government Connect
Are you connected and operationally utilising the Government
Connect network? If not have you considered connecting to
Government Connect and why was the decision made not to connect?
Do you meet the Government Connect version three requirements?
Please supply your latest CLAS consultant annual Government Connect
assessment/audit report, blanking out any statements which could
contravene a security concern from a third party reading it.
Do you meet the Government Connect version four requirements?
Please supply the latest internal report for the Government Connect
version four Audit/Assessment, blanking out any statements which
could contravene a security concern from a third party reading it.

Criminal Justice Network
Are you connected to and operationally utilising the Criminal
Justice Network? If not have you considered connecting to the
Criminal Justice Network and why was the decision made not to
connect?
Please supply your latest annual assessment/audit report, blanking
out any statements which could contravene a security concern from a
third party reading it.

NHS N3 Network
Are you connected to and operationally utilising the NHS N3
Network? If not have you considered connecting to the NHS N3
network and why was the decision made not to connect?
Please supply your latest N3 Connection assessment/audit report,
blanking out any statements which could contravene a security
concern from a third party reading it.
Do both schools and the Council share the same physical network
responsible for voice and data communications?

Yours faithfully,

Dave Schneider

Lynda Crawford, Rother District Council

Dear Mr Schneider

FREEDOM OF INFORMATION ACT 2000

Thank you for your request received on 18 August 2010 requesting
information about network information. We are processing your request
in conjunction with the Finance and Technology Divisions and hope to be
able to respond to you within 4 weeks.

Lynda Crawford

Admin Assistant

Corporate Services

Rother District Council

Town Hall

Bexhill-on-Sea

East Sussex TN39 3JX

T: 01424 787835

F: 01424 787879

E: [1][email address]

W: [2]www.rother.gov.uk

show quoted sections

References

Visible links
1. mailto:[email address]
2. http://www.rother.gov.uk/

Lynda Crawford, Rother District Council

Dear Mr Schneider

FREEDOM OF INFORMATION ACT 2000

With reference to your request received on 18 August 2010 about network
information, the Head of Technology has provided the following response. 

Provide, name, address and telephone number for the following people:

o Senior Information Risk Owner

T Smith, Town Hall, Bexhill-on-Sea, East Sussex 01424 787778

o Governance Manager

as above

o Information Security Officer/Manager B Curtis, Town Hall,
Bexhill-on-Sea, East Sussex 01424 787787

o Information Technology Security Officer/Manager A Tunstall, Town Hall,
Bexhill-on-Sea, East Sussex  01424 787780

o Caldecott Guardian  - N/A

    

PCI-DSS

Does your organisation process electronic payment cards? - Yes credit &
debit cards

How much money is processed from electronic payment cards per annum? -
£3,684,000 (2009/10)

How many electronic payment card transactions are processed per annum? -
21,559 (2009/10)

Are you PCI-DSS compliant? -  The system is fully hosted and the provider
is PCI-DSS compliant.

ISO 27001

Are you or have you considered becoming ISO 27001 compliant or certified?
 We are not certified as ISO 27001 compliant

    

Government Connect

Are you connected and operationally utilising the Government Connect
network?  Yes

If not have you considered connecting to Government Connect and why was
the decision made not to connect?  N/A

Do you meet the Government Connect version three requirements? Yes

Please supply your latest CLAS consultant annual Government Connect
assessment/audit report, blanking out any statements which could

contravene a security concern from a third party reading it.     This
is a RESTRICTED document

Do you meet the Government Connect version four requirements?   We are
not currently required to meet version four.

Please supply the latest internal report for the Government Connect
version four Audit/Assessment, blanking out any statements which

could contravene a security concern from a third party reading it.
   N/A

    

Criminal Justice Network

Are you connected to and operationally utilising the Criminal Justice
Network? No

If not have you considered connecting to the Criminal Justice Network and
why was the decision made not to connect?

Not used operationally

Please supply your latest annual assessment/audit report, blanking out any
statements which could contravene a security concern from a

third party reading it.   N/A

    

NHS N3 Network

Are you connected to and operationally utilising the NHS N3 Network?  No

           

If not have you considered connecting to the NHS N3 network and why was
the decision made not to connect?

Not required operationally

    

Please supply your latest N3 Connection assessment/audit report, blanking
out any statements which could contravene a security concern from a third
party reading it.  N/A

    

Do both schools and the Council share the same physical network
responsible for voice and data communications? No

You may use our internal complaints procedure if you are dissatisfied. 
If you are still dissatisfied you may appeal to the Information
Commissioner.  Please contact Anne Bruin, Team Leader - Customer
Services, if you wish to complain.

David Edwards

Solicitor to the Council

T: 01424 787840

E: [1][Rother District Council request email]

W: [2]www.rother.gov.uk

show quoted sections

References

Visible links
1. mailto:[Rother District Council request email]
2. http://www.rother.gov.uk/