Andy Burnam Restricted Documents
Discussion
http://news.bbc.co.uk/1/hi/uk_politics/8009440.stm
[quote=bbc_article}
Mr Burnham left the documents marked "restricted" in a case when he arrived at London's Euston station on Monday. The case was handed over at Glasgow.
The Department for Culture, Media and Sport said it would conduct a review of security procedures but that the papers did not contain sensitive information.
[/quote]
Why is his department saying that they don't contain sensitive information. The documents had been classified as "restricted" anyone else losing them would be questioned for breaches of the OSA.
speedchick said:
I don't understand why this cannot be classed as gross misconduct and hence a sackable offence, it would be out here in the real world.
It's usually three strikes and your out with such material I believe (I stand to be corrected) in the my experience that's the way I've seen it applied. It would be a different ball game if it were secret or aboveesselte said:
Fittster said:
And no laptops or documents are lost in commercial organisations.
They are but someone usually goes if the data on them in critical....?I've never known anyone to get pulled up on it. Occasionally an audit comes round who is lied to and the world keeps spinning.
Fittster said:
esselte said:
Fittster said:
And no laptops or documents are lost in commercial organisations.
They are but someone usually goes if the data on them in critical....?I've never known anyone to get pulled up on it. Occasionally an audit comes round who is lied to and the world keeps spinning.
jshell said:
Fittster said:
esselte said:
Fittster said:
And no laptops or documents are lost in commercial organisations.
They are but someone usually goes if the data on them in critical....?I've never known anyone to get pulled up on it. Occasionally an audit comes round who is lied to and the world keeps spinning.
Learn to relax, your personal data is all over 100s if not 1000s of databases and you can bet that a fair few aren't that focused on data protection. A backup goes missing, a developer in India gets access to the production data, someone leaves their bag on the train but it doesn't make the papers. If companies went round sacking people everytime there was a potential security breach the number of people on the dole would be a lot higher.
jshell said:
Fittster said:
esselte said:
Fittster said:
And no laptops or documents are lost in commercial organisations.
They are but someone usually goes if the data on them in critical....?I've never known anyone to get pulled up on it. Occasionally an audit comes round who is lied to and the world keeps spinning.
Learn to relax, your personal data is all over 100s if not 1000s of databases and you can bet that a fair few aren't that focused on data protection. A backup goes missing, a developer in India gets access to the production data, someone leaves their bag on the train but it doesn't make the papers. If companies went round sacking people everytime there was a potential security breach the number of people on the dole would be a lot higher.
Fittster said:
These organisations did a lot of government work and had plenty of peoples personal and bank details.
Well that explains it. Same incompetence comes as standard.
In my bank if you left your desk untidy (clear desk policy) you got a warning. Second time you got a black plastic bag to put all your personal stuff in and were escorted out the building.
Jasandjules said:
Fittster said:
These organisations did a lot of government work and had plenty of peoples personal and bank details.
Well that explains it. Same incompetence comes as standard.
In my bank if you left your desk untidy (clear desk policy) you got a warning. Second time you got a black plastic bag to put all your personal stuff in and were escorted out the building.
The idea that private sector is good at security and public sector is bad is a load of old nonsense IMHO.
Fittster said:
The idea that private sector is good at security and public sector is bad is a load of old nonsense IMHO.
My bank didn't outsource IT, we had our own teams (and well paid feckers they were too). We had encryption systems, and so much IT Security there was a desk who dealt purely with it. We even had a policy that if your password was provided to another member of staff, it was the sack. If you needed to use someone else's account when they were off, you had to get a Director to sign off that you needed that account and this was then countersigned, and provided to the IT Security Department... Anyone who breached these rules was sacked. I saw it happen twice in a week once.As I said, if people made mistakes they paid for it, often with their jobs.
Jasandjules said:
Fittster said:
The idea that private sector is good at security and public sector is bad is a load of old nonsense IMHO.
My bank didn't outsource IT, we had our own teams (and well paid feckers they were too). We had encryption systems, and so much IT Security there was a desk who dealt purely with it. We even had a policy that if your password was provided to another member of staff, it was the sack. If you needed to use someone else's account when they were off, you had to get a Director to sign off that you needed that account and this was then countersigned, and provided to the IT Security Department... Anyone who breached these rules was sacked. I saw it happen twice in a week once.As I said, if people made mistakes they paid for it, often with their jobs.
As for the rules, everyone has rules and information security officers and a hundred and one other things that are ignored on a day to day basis to get the job done. They may keep managers and auditors happy but the geeks happily ignore them.
The idea that financial services are any better than central government is wishful thinking.
Gassing Station | News, Politics & Economics | Top of Page | What's New | My Stuff