Securing Cost Savings for Scottish Police

Similar documents
IN THE FRAME. Computacenter Public Sector Frameworks FRAMEWORK

Cyber Security Strategy

Privacy Impact Assessment

COMESA CYBER SECURITY PROGRAM KHARTOUM, SUDAN

FREQUENTLY ASKED QUESTIONS

University Lowers Barriers, Fortifies Security with Virtualization

Sussex Police Business Crime Strategy

Cyber Crime Update. Mark Brett Programme Director February 2016

Networks

Chapter 1: Enterprise Campus Architecture. Course v6 Chapter # , Cisco Systems, Inc. All rights reserved. Cisco Public

BUSINESS CONTINUITY AND DISASTER RECOVERY ACROSS GOVERNMENT BOUNDARIES

Cisco Wireless Video Surveillance: Improving Operations and Security

Information Security Controls Policy

SD-WAN Transform Your Agency

National Policing Community Security Policy

HSCN. Improving health and care through better connections

/ Lot 1 Standard Service Offer Data Access Services Service Offer RM1045-L1-SSO Pinacl

BT CNSP - new solutions for health and social care

NFV and SDN what does it mean to enterprises?

Data Services. Reliable, high-speed data connectivity

Airport Security & Safety Thales, Your Trusted Hub Partner

McClelland Report. John McClelland CBE, June 2011

NOT PROTECTIVELY MARKED NOT PROTECTIVELY MARKED

Commissioner Ian Dyson SRO, National Enabling Programmes IMORCC

NOT PROTECTIVELY MARKED. Public SPA Board Meeting Date 15 December 2016 Assembly Room, Tulliallan, Alloa

CITY OF MONTEBELLO SYSTEMS MANAGER

Unitary Authority Set to Achieve 27 Per Cent Savings Target with IT Management Tools

Bristol t e Exeter t e

FIRE REDUCTION STRATEGY. Fire & Emergency Services Authority GOVERNMENT OF SAMOA April 2017

NASCIO Recognition Award Nomination. Title: Central Issuance of State Drivers Licenses. Category: Digital Government Government to Citizen

Scottish Wide Area Network (SWAN) update & Partnership Connectivity

Cisco Exam Questions & Answers

QUESTION: 1 You have been asked to establish a design that will allow your company to migrate from a WAN service to a Layer 3 VPN service. In your des

Position Description For ICT Officer Support Information, Technology and Communication Department Hobart

SIP Trunks. The cost-effective and flexible alternative to ISDN

SERVICE DEFINITION G-CLOUD 7 THALES PSN REMOTE ACCESS. Classification: Open

Bachelor of Information Technology (Network Security)

Canada Life Cyber Security Statement 2018

Cloud First Policy General Directorate of Governance and Operations Version April 2017

Cisco Network Architecture Blueprint For The NHS (C-NAB)

NOT PROTECTIVELY MARKED

Primenet Global Ltd A CLASS INTERNET SERVICE PROVIDER COMPLETE SOLUTIONS FOR NETWORKING & INTERNET SERVICES

New Zealand Government IBM Infrastructure as a Service

Cisco Cisco ADVDESIGN. Download Full Version :

Capabilities Statement. CITEC 317 Edward Street Brisbane, QLD

SIP Trunks. The cost-effective and flexible alternative to ISDN

Metro Ethernet for Government Enhanced Connectivity Drives the Business Transformation of Government

BREITKOM Network Sdn Bhd Corporate Profile

MANAGING THE COMPLEXITY.

CYBER INCIDENT REPORTING GUIDANCE. Industry Reporting Arrangements for Incident Response

Convergence Everywhere

IT MANAGER PERMANENT SALARY SCALE: P07 (R ) Ref:AgriS042/2019 Information Technology Manager. Reporting to. Information Technology (IT)

Delivering the Wireless Software-Defined Branch

Cisco Cisco Sales Expert. Practice Test. Version

Data Services. Reliable, high-speed data connectivity

CCDE Challenge Mela- Construction Group

Session Guide for Service Providers

INFORMATION SECURITY. One line heading. > One line subheading. A briefing on the information security controls at Computershare

Information Security Incident Response Plan

How Cisco IT Deployed Enterprise Messaging on Cisco UCS

Community College LAN Deployment Guide

Unit code: D/601/1956 QCF Level 5: BTEC Higher National Credit value: 15

Keeping the lid on storage

Choosing the Right. Ethernet Solution. How to Make the Best Choice for Your Business

3.4 NON-DOMESTIC SERVICES (L )(C.2.1.9)

Data Governance for Smart City Management

JUSTICE SUB-COMMITTEE ON POLICING AGENDA. 2nd Meeting, 2014 (Session 4) Thursday 20 February 2014

Responding to Cybercrime:

Business Continuity and Disaster Recovery. Pennsylvania Emergency Management Agency (PEMA) Satellite Warning System/Rapid Notification Network

ANZSCO Descriptions The following list contains example descriptions of ICT units and employment duties for each nominated occupation ANZSCO code. And

M1, Singapore. Industry Trends Driving ICT Strategies

Cisco ACE30 Application Control Engine Module

BT Connect Networks that think Optical Connect UK

Serious Organised Crime Agency Collaborative Partnership s Work! Howard Lamb SOCA e-crime

Tiscali Business Services Wholesale IPVPN Services Summary

GDPR: Get Prepared! A Checklist for Implementing a Security and Event Management Tool. Contact. Ashley House, Ashley Road London N17 9LZ

1. To provide an update on the development of the SPA Assurance Map.

Doug Couto Texas A&M Transportation Technology Conference 2017 College Station, Texas May 4, 2017

JOB DESCRIPTION FOR SUPPORT STAFF

Table of Contents Table of Contents...2 Introduction...3 Mission of IT...3 Primary Service Delivery Objectives...3 Availability of Systems...

Mid-Kent ICT Services Technology Strategy. Author: Tony Bullock Date: September 2013 Version: 019

Logicalis What we do

COMPLETE ONLINE DIGITAL EVIDENCE SYSTEM

Oregon State Police. Information Technology. Honor Loyalty. Pride Dedication

Exam Code: Exam Code: Exam Name: Advanced Borderless Network Architecture Systems Engineer test.

NEC Australia Overview. au.nec.com

Securing intelligent networks: a guide for CISO and CIOs

Nottinghamshire Office of the Police & Crime Commissioner & Nottinghamshire Chief Constable

Position Title: IT Security Specialist

Cisco I/O Accelerator Deployment Guide

Exam Questions

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

New Zealand Government IbM Infrastructure as a service

Global Deployment of SD-WAN. Mike Howell October 2017

PREPARE FOR TAKE OFF. Accelerate your organisation s journey to the Cloud.

Local Authority and Police collaboration creates unique 3G/4G-enabled ANPR and CCTV eco-system. Case Study

Implementation Strategy for Cybersecurity Workshop ITU 2016

BT Connect Acceleration

The Case for National CSIRTs

IT Services. We re the IT in OrganIsaTion.

Transcription:

Securing Cost Savings for Scottish Police

Single communications infrastructure improves inter-force collaboration and supports CESG security standards Executive Summary Customer Name Scottish Police Services Authority Location Glasgow, Scotland Industry Public Sector Government Company Size 1,600 employees Business Challenge Establish a nationwide shared services network infrastructure Introduce dynamic data encryption capability Enable delivery of national policing applications Standardise technology platforms Network Solution Cisco foundation networking technologies Cisco virtualisation architecture Cisco borderless networks architecture Business Value Foundation for centralised services which will improve collaboration between Scottish police forces Streamlined deployment of applications Cost savings and efficiencies for policing Data encryption for enhanced information security CUSTOMER PROFILE Digital communications enrich our world but can also open the door to social ills such as terrorism, fraud and identity theft. The Scottish Police Services Authority (SPSA) is entrusted with establishing a consistent and effective national service provision in a number of discrete areas: Realise efficiencies through sharing of resources and best practices Enable economy of scale To support and allow police forces to focus on operational policing Inaugurated in April 2007, the SPSA is a nondepartmental public body that manages police information systems, forensic services and training on behalf of Scotland s eight police forces and wider criminal justice community. It provides one of the world s only independently-accredited crime scene to court forensic services; manages information systems used by more than 50 agencies across the UK; and trains over 8,000 police officers every year through the Scottish Police College. It also maintains the Scottish Crime and Drug Enforcement Agency. It has over 1,600 staff and an overall budget of over 100 million. Page 2 of 5

ORGANISATIONAL CHALLENGE Before the SPSA was established, police forces in Scotland managed IT systems independently of one another, and each force was responsible for its own technology systems, software applications and data repository. In 2006 the Association of Chief Police Officers in Scotland (ACPOS) agreed that a shared services infrastructure was needed to reduce administrative overheads and increase resources available for front line policing. The SPSA was created by the Scottish Government to consolidate common functions such as forensics, training, technology systems and ICT assets. A centralised data network called Scottish Police Network (SPN), hosting applications and serving information from two data centres East and West, was started in April 2008. Using Multiprotocol Label Switching (MPLS) to run secure connections between all police forces and agencies in Scotland, a change in legislation during the deployment of the SPN presented some additional challenges for the project team. The UK Government s Communications Electronic Security Group (CESG), which defines the data security standards that all government agencies must adhere to, introduced regulations that the original plans for the SPN would not meet. New legislation required all data marked RESTRICTED or above in the CESG classification system to be encrypted if being sent over a public communications network. Billy McMath, Head of Technical Services, SPSA,explains We d spent a lot of time and effort on building the network but when the CESG issued the new directive, it completely changed the game for us. Suddenly our WAN was not suitable for information of a certain security level because it didn t have data encryption capability. To address the changes, the SPSA adopted CESG recommendations for a cryptographic hardware solution involving the use of point-to-point devices. However the hardware was not compatible with the design of the SPN and proved difficult to manage and scale. Page 3 of 5

NETWORK SOLUTION SPSA came up with an alternative that would enable it to dynamically establish and collapse encrypted point-to-point connections on the fly. The software-based solution involved fitting all Cisco routers with CISCO DES/3DES/AES/SSL VPN Encryption/Compression cards and incorporated an encryption accelerator module to maintain data processing performance. The SPSA Information Services division manages some 21,000 handheld radios, 12,000 desktop computers and laptops across over 250 sites. It uses Cisco ISR routers to link police sites and Catalyst 6500 Series Switches as the core switches in the two data centres. Cisco Catalyst 3100 and 2800 Series Ethernet Blade Switches provide resilient connectivity within its two data centres. Cisco MDS 9000 Series Multilayer Switches are used to deploy the storage area network that distributes critical policing applications to all sites. ACE devices ensure application load balancing across the two data centres while Global Site Selectors ensure load balancing across the wide area network. Cisco s ONS 15400 Series Multiservice Platform supports a Cisco Dense Wavelength Division Multiplexing (DWDM) solution between the two data centres to improve availability and redundancy. Cisco DWDM is also used to partition fibre optic cabling into separate fibre channel and ethernet connections. BUSINESS BENEFITS Having established the shared services network the SPSA embarked on a programme to centrally host key police applications, while decommissioning local variants. This was scheduled to support the ACPOS business change programme and the first application to be migrated was HOLMES (Home Office Large Major Enquiry System) a national investigation management system used by all UK police forces. The eight separate HOLMES instances were replaced by a single version to be used by all Scottish forces. Seven further applications are already at different stages in moving onto the shared services network, including the National Custody System being rolled out as a single integrated custody management system for all Scottish forces. Already, some forces are benefiting from the National Infrastructure providing new Firearms Licensing Management Systems as part of national Product List Data centres Cisco Data Centre Cisco Firewall Services Modules (FWSM) Cisco ACE Modules Cisco Global Site Selectors Cisco IOS Cisco Works Routing and Switching Cisco Catalyst 6500 Chassis Switches Cisco IOS Routers Cisco Catalyst 3800 and 2800 Routers Cisco PoE Switches Cisco MDS 9000 Fiber Channel Switches Cisco ONS 15400 Series Multiservice Platform Page 4 of 5

convergence and all forces have benefited from the National Infrastructure supporting a very successful project to rationalise back office services for the Safety Camera Partnership, enabling centralised processing of fines for driving offences. The network will also support a new single integrated Command and Control system for the whole of Scotland. Centralisation has improved operational efficiency and enhanced disaster recovery provisions. It also enables a more sustainable and cost effective approach by reducing the requirement for separate servers. Billy McMath says that the deployment of applications and storage of data using a national infrastructure has enabled the SPSA to help streamline policing procedures in Scotland: Having a single technology platform makes it much easier to support operational standards across the forces and be consistent in analysing performance data. Improved network security management ensures better intrusion prevention. Cisco s Security Monitoring, Analysis and Response System aggregates all network threat notifications and alarms that exhibit a trend into a single incident and prioritises each by severity. The SPSA Security team can now spot anomalous behaviour from inside the organisation as well outside. Most recently, the software approach to network encryption successfully leverages the existing infrastructure, making it significantly cheaper than hardware based solution. It also meets CESG requirements as well as network outage response targets. Redundancy in the network is supported by the Global Site Selectors, which redirect traffic between data centres in the event of failover. Billy McMath says, We re proud of the technological advances the SPSA has introduced and the underlying infrastructure is a key part of that. We re proud of the technological advances the SPSA has introduced and the underlying infrastructure is a key part of that. Billy McMath, Head of Technical Services, SPSA Printed in the UK The Print Consultancy ( 01483 771211) / Feb 09 All contents are Copyright 1992-2010 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. Page 5 of 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback