ISSA Guidelines on Information and Communication Technology: Overview

Transcription

1 ISSA Guidelines on Information and Communication Technology: Overview Raul Ruggia-Frick ISSA Secretariat

2 ISSA Guidelines Information and Communication Technology 2

3 Outline Context The Guidelines on Information and Communication Technologies (ICT) Additional ICT Guidelines: next steps Conclusions 04/05/2015 3

4 Context: ICT in Social Security ICT is an indispensable enabler systems ICT often makes the difference between processes that can or cannot be done A critical factor in political success, but also when failure Growing complexity and critical nature of ICT. ICT-based social systems are increasingly sophisticated and mission critical High socio-economic impact of social programmes Permanent evolution in social policies and programmes Articulation, coordination and integration of social programmes Preventive approaches to deal with error, evasion and fraud Empowering users and promoting self-service capabilities Continual austerity and budget control Increasing scrutiny on effectiveness and efficiency of ICT-related expenses 04/05/2015 4

5 Context: Corporate use of ICT Corporate use of ICT institutions consists of Implementation of social security functions and required resources. Application of key technologies for social security systems Governance and management of ICT-related activities Adoption of international standards and practices e.g. ISO, COBIT, ITIL, DAMA, CMMI, W3C, OASIS, Dublin Core, OMG Foster compatibility among diverse ICT components and services Apply internationally-recognized practices and methodological frameworks Different roles involved ICT professionals and technical staff, as well as Units managing social security functions Contracts administration Internal audit Institutional governance: CEO/DG, General Manager, Board, etc. 04/05/2015 5

6 Guidelines on ICT: Main goals Provide a framework to support the corporate application of ICT in social security Address the technical aspects as well as governance and investment issues Refer to good practices and case studies Reinforce the institutional capacity to apply ICT Provide the ICT staff with a comprehensive guide Increase awareness of Board and Management Provide the CEO, Board and Management with a high-level guidance about the main elements for effective and efficient use of ICT Long-term contribute to building common solutions Standardized ICT-based approaches and solution for social security 04/05/2015 6

7 Guidelines on ICT: general structure ICT governance and management Investments on ICT and value management ICT service delivery Data and information management Key technologies: Interoperability Data Security and Privacy Mobile Technologies More effective and efficient use of ICT, by aligning ICT strategy with the business More appropriately investing and contracting ICT products and services Better quality of ICT services, in order to meet the needs of the business. More effective and efficient planning, control and exploitation of information resources along its life-cycle. More effective implementation of integrated and citizen-oriented social security systems. 04/05/2015 7

8 Guidelines: ICT Governance and Management ICT Governance The system by which the current and future use of ICT is directed and controlled [ISO/IEC 38500] Two major aspects: ICT demand governance ( doing the right things ) align ICT with business ICT supply-side governance ( doing things right ) ICT Management Processes and organizational structure to plan, build, execute and monitor activities aligned with the direction set through ICT governance ICT Investment and Value Management The goal is to optimize value and enable an organization to: Clearly define and communicate its view of what constitutes value, and to whom Select and execute investments Manage its assets and optimize value with the affordable use of resources and an acceptable level of risk 04/05/2015 8

9 Guidelines: ICT Service Delivery Covers the overall software and service life cycle Planning, development and software construction Providing relevant e-services Managing ICT operations Objectives of ICT service delivery Provide users with appropriate means to access the institution s services, particularly through multichannel online systems Maintain business satisfaction and confidence in ICT through effective and efficient delivery and support of agreed ICT services Minimize the impact of service outages on daily business activities Ensure that access to agreed ICT services is only provided to those authorized to receive those services 04/05/2015 9

10 Guidelines: Data and Information Management Data and information are fundamental assets for social security institutions They support decision-making as well as social security operations Building and managing adequate data resources involves Defining institution s corporate policies and practices to manage data and information Appling systematic approaches to data and information management Focusing on the quality and reliability of the data Adopting international standards and practices for data management Main activities Establishing a data management and governance framework Developing a Master Data Model and system (Master Data Management) Establishing an institutional data quality framework Adopting effective mechanisms for information retrieval and analysis 04/05/

11 Guidelines: Key Technologies Implementing integrated, safe and accessible social security systems involves using three key technologies: Interoperability connecting ICT-based systems Mobile technologies implementing ICT-based services to be used through mobile devices (phones, tablets, etc.) Data security and privacy ensuring the security and privacy of data and ICT systems Mobile access Interoperability Accessible, integrated and safe Security & privacy 11

12 New ICT guidelines: next steps Current guidelines foundations for ICT application in social security Provide recommendations in fundamental management areas and key technologies, which may be extended New guidelines ( ) social security specific components Implementation of international social security agreements Reliable and secure data exchange Effectiveness of the overall implementation aspects Effectiveness of managing multiple international agreements Social security master data systems (core databases) Information models Data quality properties and validation methods Interoperability (shared resources) Data security and privacy 12

13 Guidelines on ICT: Core areas 1. ICT Governance and Management 2. ICT Service Delivery 3. Data and Information Management 4. Interoperability 5. Data Security and Privacy 6. Mobile technologies 13

14 Conclusion ISSA Guidelines on ICT support the corporate application of ICT in social security Governance and management of ICT-related activities. The principles and processes to globally govern and manage the overall application of ICT Include roles of the Board and the Management Application of key technologies for social security systems Technologies play a key role in the implementation of high-impact social security functions Guidelines are mainly based on good practices implemented by social security institutions 14

15 /excellence 04/05/