Audit of Internet publishing and use of social media at ...
Transcript of Audit of Internet publishing and use of social media at ...
OIO
S/IA
D A
ssig
nmen
t No.
AT2
010/
521/
01
AN
NE
X I
SUM
MA
RY
OF
RE
CO
MM
EN
DA
TIO
NS
Ass
ignm
ent N
o. A
T20
10/5
21/0
1 –
Aud
it of
Inte
rnet
pub
lishi
ng a
t the
Uni
ted
Nat
ions
Sec
reta
riat
Para
.no
. R
ecom
men
datio
n A
ccep
ted?
(Y
es/N
o)
Cri
tical
/im
port
ant
Res
pons
ible
in
divi
dual
Im
plem
enta
tion
date
Clie
nt c
omm
ents
10
The
Und
er-S
ecre
tary
-Gen
eral
of t
he
Dep
artm
ent o
f Pub
lic In
form
atio
n, in
co
llabo
ratio
n w
ith th
e C
hief
In
form
atio
n Te
chno
logy
Off
icer
, sh
ould
dev
elop
pro
cedu
res f
or
requ
iring
use
r dep
artm
ents
and
off
ices
to
con
sult
with
the
Off
ice
of L
egal
A
ffai
rs, b
efor
e en
terin
g in
to
cont
ract
ual a
gree
men
ts w
ith e
xter
nal
prov
ider
s of I
nter
net a
nd so
cial
med
ia
serv
ices
.
No
Impo
rtant
(M
ediu
m)
DPI
dec
lines
this
reco
mm
enda
tion
beca
use
it co
nsid
ers t
his
unre
alis
tic.
To su
ppor
t an
even
t an
d/or
a c
ampa
ign,
we
ofte
n ne
ed
to q
uick
ly d
eplo
y a
pres
ence
on
the
Inte
rnet
(web
site
s, so
cial
m
edia
acc
ount
s).
The
requ
irem
ent
to c
onsu
lt O
LA d
efea
ts th
e pu
rpos
e of
bei
ng a
ble
to la
unch
In
tern
et-b
ased
info
rmat
ion
mat
eria
ls ra
pidl
y.14
Th
e U
nder
-Sec
reta
ry-G
ener
al o
f the
D
epar
tmen
t of P
ublic
Info
rmat
ion,
in
colla
bora
tion
with
the
Chi
ef
Info
rmat
ion
Tech
nolo
gy O
ffic
er
initi
ate
a re
view
of [
2nd r
evie
w]
ST/A
I/200
1/5
[sym
bol c
orre
cted
by
DPI
] on
Inte
rnet
pub
lishi
ng a
nd [1
st
revi
ew] S
T/SG
B/2
005/
15 o
n th
e m
anda
te o
f the
Pub
licat
ions
Boa
rd to
st
reng
then
the
acco
unta
bilit
y fr
amew
ork
for I
nter
net p
ublis
hing
and
us
e of
soci
al m
edia
.
Yes
, par
tially
(i.
e., o
nly
revi
ew o
f ST
/SG
B/2
005/
15)
Crit
ical
(H
igh)
M
r. M
aher
N
asse
r, D
irect
or,
Out
reac
h
Div
isio
n &
Cha
ir,
Publ
icat
ions
B
oard
(o
nly
revi
ew
ofST
/SG
B/2
005
/15)
31 D
ecem
ber
2011
(o
nly
revi
ew o
f ST
/SG
B/2
005/
15)
DPI
requ
ests
that
this
re
com
men
datio
n be
div
ided
into
tw
o pa
rts.
(a)
As C
hair
of th
e Pu
blic
atio
ns B
oard
, the
Dire
ctor
of
DPI
’s O
utre
ach
Div
isio
n w
ill
over
see
a re
view
of
ST/S
GB
/200
5/15
. Th
e in
dica
ted
impl
emen
tatio
n da
te o
f 31
Dec
embe
r 201
1 re
fers
to a
text
ap
prov
ed b
y th
e B
oard
. Th
is te
xt
will
then
be
subm
itted
to o
ther
Se
cret
aria
t ent
ities
for f
urth
er
clea
ranc
e.
(b)
Afte
r con
clus
ion
of th
e fir
st
revi
ew, t
he se
cond
par
t of t
he
reco
mm
enda
tion
(i.e.
, the
revi
ew
OIO
S/IA
D A
ssig
nmen
t No.
AT2
010/
521/
01
of S
T/A
I/200
1/5)
shou
ld b
e ad
dres
sed,
with
OIC
T in
the
lead
. 19
Th
e O
ffic
e of
Info
rmat
ion
and
Com
mun
icat
ions
Tec
hnol
ogy,
in
coor
dina
tion
with
the
Dep
artm
ent o
f M
anag
emen
t and
the
Dep
artm
ent o
f Pu
blic
Info
rmat
ion,
shou
ld a
dequ
atel
y ad
dres
s dat
a pr
ivac
y ris
ks in
the
cont
ext o
f the
Inte
rnet
pub
lishi
ng.
Impo
rtant
(M
ediu
m)
30
The
Dep
artm
ent o
f Pub
lic
Info
rmat
ion
shou
ld, i
n co
nsul
tatio
n w
ith th
e O
ffic
e of
Leg
al A
ffai
rs,
deve
lop
guid
elin
es fo
r det
erm
inin
g w
hen
a U
nite
d N
atio
ns p
ublic
atio
n an
d w
ebsi
te c
onte
nt a
re su
bjec
t to
tradi
tiona
l cop
yrig
ht p
rote
ctio
n, a
nd
whe
n al
tern
ativ
e fo
rms o
f attr
ibut
ion
and
licen
ses a
re p
erm
issi
ble.
Yes
, par
tially
(i.
e., o
nly
revi
ew o
f co
pyrig
ht
prov
isio
ns
for
publ
icat
ions
)
Impo
rtant
(M
ediu
m)
Mr.
Mah
er
Nas
ser,
Dire
ctor
, O
utre
ach
D
ivis
ion
& C
hair,
Pu
blic
atio
ns
Boa
rd
(onl
y re
view
of
cop
yrig
ht
prov
isio
ns fo
r pu
blic
atio
ns)
30 Ju
ne 2
012
(onl
y re
view
of
copy
right
pr
ovis
ions
for
publ
icat
ions
)
DPI
requ
ests
that
this
re
com
men
datio
n be
div
ided
into
tw
o pa
rts.
(a)
Afte
r com
plet
ing
its m
anda
te re
view
, the
Pu
blic
atio
ns B
oard
will
upd
ate
the
exis
ting
polic
y on
cop
yrig
ht fo
r pu
blic
atio
ns, i
rres
pect
ive
of th
eir
form
at, m
ediu
m a
nd d
eliv
ery
met
hod.
The
indi
cate
d im
plem
enta
tion
date
of 3
0 Ju
ne
2012
refe
rs to
a te
xt a
ppro
ved
by
the
Boa
rd.
This
text
will
then
be
subm
itted
to o
ther
Sec
reta
riat
entit
ies f
or fu
rther
cle
aran
ce.
(b)
With
rega
rd to
web
site
co
nten
t, in
clud
ing
stan
dard
co
pyrig
ht la
ngua
ge fo
r web
site
fo
oter
s, th
is sh
ould
be
addr
esse
d by
OLA
, in
cons
ulta
tion
with
m
ajor
con
tent
-pro
duci
ng
Dep
artm
ents
. 35
Th
e C
hief
Info
rmat
ion
Tech
nolo
gy
Off
icer
shou
ld: (
a) d
efin
e m
inim
um
secu
rity
requ
irem
ents
to b
e in
clud
ed
in th
e co
ntra
ctua
l arr
ange
men
ts w
ith
Impo
rtant
(M
ediu
m)
OIO
S/IA
D A
ssig
nmen
t No.
AT2
010/
521/
01
third
par
ty p
rovi
ders
of w
ebsit
e ho
stin
g, a
nd o
pera
tion
leve
l ag
reem
ents
with
dep
artm
ents
and
of
fices
with
in th
e U
nite
d N
atio
ns th
at
prov
ide
host
ing
serv
ices
; and
(b)
esta
blis
h cr
iteria
for c
olle
ctin
g,
anal
yzin
g an
d re
porti
ng w
ebsi
te
stat
istic
s.
OIO
S/IA
D A
ssig
nmen
t No.
AT2
010/
521/
01
AN
NE
X II
O
PPO
RT
UN
ITIE
S FO
R IM
PRO
VE
ME
NT
A
ssig
nmen
t No.
201
0/52
1/01
– A
udit
of In
tern
et P
ublis
hing
at t
he U
nite
d N
atio
ns S
ecre
tari
at
Para
. no
.R
ecom
men
datio
n C
lient
com
men
ts
17
The
Dep
artm
ent o
f Pub
lic In
form
atio
n, in
col
labo
ratio
n w
ith
the
Dep
artm
ent
of
Man
agem
ent,
coul
d co
nsid
er
the
oppo
rtuni
ty t
o: (
a) d
eleg
ate
resp
onsi
bilit
ies
to o
ffic
es a
nd
depa
rtmen
ts
in
self-
regu
latin
g/m
anag
ing
thei
r in
tern
al
Inte
rnet
pub
lishi
ng a
ctiv
ities
; an
d (b
) as
sess
the
ski
lls a
nd
prof
iles
requ
ired
by th
e O
rgan
izat
ion
to a
ddre
ss th
e re
sour
ce
need
s for
info
rmat
ion
man
agem
ent a
ctiv
ities
.
Item
(a) c
an o
nly
be c
onsid
ered
onc
e th
e re
visi
on o
f ST/
AI/2
001/
5 ha
s bee
n co
mpl
eted
.
Item
(b) s
houl
d be
add
ress
ed b
y D
M.
22
The
Dep
artm
ent o
f Pub
lic In
form
atio
n, in
coo
rdin
atio
n w
ith
the
Dep
artm
ent
of
Man
agem
ent
and
the
Off
ice
of
Info
rmat
ion
and
Com
mun
icat
ions
Te
chno
logy
, co
uld
cons
ider
th
e op
portu
nity
to
co
nsol
idat
e po
licie
s an
d pr
oced
ures
rel
ated
to
Inte
rnet
pub
lishi
ng a
nd u
se o
f so
cial
m
edia
.
This
item
can
onl
y be
con
side
red
once
the
revi
sion
of S
T/A
I/200
1/5
has b
een
com
plet
ed.
26
The
Dep
artm
ent o
f Pub
lic In
form
atio
n, in
con
sulta
tion
with
th
e O
ffic
e of
Le
gal
Aff
airs
an
d th
e D
epar
tmen
t of
M
anag
emen
t, co
uld
cons
ider
the
opp
ortu
nity
to
deve
lop
proc
edur
es f
or r
egul
atin
g an
d m
onito
ring
the
regi
stra
tion
proc
ess o
f dom
ain
nam
es b
y of
fices
and
dep
artm
ents
.
DPI
has
initi
ated
act
ion
on th
is m
atte
r.
27
The
Off
ice
of L
egal
Aff
airs
cou
ld c
onsi
der
the
oppo
rtuni
ty
to fu
rther
exp
lore
with
the
Inte
rnet
Cor
pora
tion
for A
ssig
ned
Nam
es
and
Num
bers
(I
CA
NN
) th
e po
ssib
ility
of
es
tabl
ishi
ng a
spe
cific
“.u
n” d
omai
n fo
r en
titie
s of
the
U
nite
d N
atio
ns,
and
colla
bora
te
with
th
e O
ffic
e of
In
form
atio
n an
d C
omm
unic
atio
ns T
echn
olog
y re
gard
ing
the
man
agem
ent
of t
he r
elat
ed t
echn
ical
inf
rast
ruct
ure
and
the
OIO
S/IA
D A
ssig
nmen
t No.
AT2
010/
521/
01
proc
urem
ent
of a
sho
rter
unifo
rm r
esou
rce
loca
tor
for
the
Uni
ted
Nat
ions
syst
em.
33
The
Off
ice
of
Info
rmat
ion
and
Com
mun
icat
ions
Te
chno
logy
, in
colla
bora
tion
with
dep
artm
ents
and
off
ices
, co
uld
cons
ider
the
oppo
rtuni
ty to
est
ablis
h st
anda
rd to
ols f
or
Inte
rnet
pub
lishi
ng o
n th
e ba
sis
of te
mpl
ates
con
tain
ing
pre-
defin
ed f
ield
s an
d di
scla
imer
s re
flect
ing
the
prov
isio
ns o
f th
e U
nite
d N
atio
ns S
ecre
taria
t for
cop
yrig
ht, p
rivac
y, te
rms
of u
se a
nd li
nks.
37
The
Dep
artm
ent o
f Pub
lic In
form
atio
n, in
coo
rdin
atio
n w
ith
the
Off
ice
of H
uman
Res
ourc
es M
anag
emen
t and
the
Ethi
cs
Off
ice,
cou
ld c
onsi
der
the
oppo
rtuni
ty t
o de
velo
p in
tern
al
polic
y gu
idel
ines
and
aw
aren
ess
prog
ram
mes
on
the
use
and
crea
tion
of s
ocia
l med
ia b
y st
aff
mem
bers
in a
n of
ficia
l as
wel
l as p
erso
nal c
apac
ity.
In Ju
ne 2
011,
DPI
com
plet
ed th
e pr
oces
s of d
rafti
ng d
epar
tmen
tal g
uide
lines
for t
he
prof
essi
onal
use
of s
ocia
l med
ia w
ith th
e id
ea th
at th
e do
cum
ent w
ould
be
a re
sour
ce/m
odel
for o
ther
dep
artm
ents
and
off
ices
to u
se in
cre
atin
g th
eir o
wn
stra
tegi
es
or in
tern
al g
uida
nce
docu
men
ts. S
ince
soci
al m
edia
use
s are
con
stan
tly e
volv
ing,
the
docu
men
t will
be
regu
larly
revi
ewed
and
upd
ated
as n
eces
sary
.
DM
shou
ld a
ddre
ss p
erso
nal u
se.
United Nations NationsUnies I N T E R O F F I C E M E M O R A N D U M M E M O R A N D U M I N T E R I E U R
T O :A :
Ms. Fatoumata Ndiaye, Director Internal Audit Division, OIOS
D AT E : 26 September 2011
R E F E R E N C E : CITO/11-00248 T H R O U G H :
S / C D E :
F R O M :D E :
Choi Soon-hong, Assistant Secretary-General Chief Information Technology Officer
S U B J E C T :O B J E T :
Audit of Internet publishing and use of social media at the United Nations Secretariat - Assignment no. AT2010/521/01
1. Reference is made to the OIOS memorandum of 30 August 2011.
2. OICT is pleased to provide its comments on the draft report (attached). We have taken note of your assessment regarding the adequacy and the effectiveness of Internet publishing and the use of social media, as well as the opportunities of improvements identified.
Thank you.
cc: Mr. V. Nambiar Mr. K. Akasaka Ms. J. Dubinsky Ms. A. Kane Mr. H. Ladsous Ms. S. Malcorra Ms. P. O’Brien Mr. S. Shaaban Mr. H. Hendler Mr. E. Tongunga
CO
NFI
DEN
TIA
L –
DR
AFT
AU
DIT
RES
ULT
S
OIO
S/IA
D A
ssig
nmen
t No.
AP2
011/
626/
3
AN
NEX
I SU
MM
AR
Y O
F R
ECO
MM
END
ATI
ON
S A
ssig
nmen
t No.
201
0/52
1/01
-- A
udit
of In
tern
et p
ublis
hing
at t
he U
nite
d N
atio
ns S
ecre
taria
t
Rec
.N
oPa
ra.
No.
R
ecom
men
datio
nA
ccep
ted?
(Yes
/No)
C
ritic
al/
impo
rtan
t R
espo
nsib
le
indi
vidu
al
Impl
emen
tatio
nda
teC
lient
com
men
ts
1 10
Th
e U
nder
-Sec
reta
ry-G
ener
al
of
the
depa
rtmen
t of
Pu
blic
In
form
atio
n,
in
colla
bora
tion
with
the
Chi
ef I
nfor
mat
ion
Tech
nolo
gy
Off
icer
, sh
ould
de
velo
p pr
oced
ures
for
req
uirin
g us
er d
epar
tmen
ts
and
offic
es t
o co
nsul
t w
ith t
he O
ffic
e of
Le
gal
Aff
airs
, be
fore
en
terin
g in
to
cont
ract
ual
agre
emen
ts
with
ex
tern
al
prov
ider
s of
In
tern
et
and
soci
al
med
ia
serv
ices
.
Im
porta
nt
(Med
ium
)
O
ICT
will
col
labo
rate
with
DPI
on
this
reco
mm
enda
tion.
2 14
Th
e U
nder
-Sec
reta
ry-G
ener
al
of
the
Dep
artm
ent
of
Publ
ic
Info
rmat
ion,
in
co
llabo
ratio
n w
ith t
he C
hief
inf
orm
atio
n Te
chno
logy
Off
icer
ini
tiate
a r
evie
w o
f ST
/AI/2
001/
15 o
n In
tern
et p
ublis
hing
and
ST
/SG
B/2
005/
15 o
n th
e m
anda
te o
f th
e Pu
blic
atio
ns
Boa
rd
to
stre
ngth
en
the
acco
unta
bilit
y fr
amew
ork
for
Inte
rnet
pu
blis
hing
and
use
of s
ocia
l med
ia.
C
ritic
al
(H
igh)
O
ICT
will
col
labo
rate
with
DPI
on
this
reco
mm
enda
tion.
3 19
Th
e O
ffic
e of
In
form
atio
n an
d C
omm
unic
atio
ns
Tech
nolo
gy,
in
coor
dina
tion
with
th
e D
epar
tmen
t of
M
anag
emen
t and
the
Dep
artm
ent o
f Pub
lic
Info
rmat
ion,
sh
ould
ad
equa
tely
ad
dres
s da
ta p
rivac
y ris
ks i
n th
e co
ntex
t of
the
In
tern
et p
ublis
hing
.
Yes
Im
porta
nt
(Med
ium
) K
MS
N/A
A
s par
t of t
he E
nter
pris
e W
eb C
onte
nt
Man
agem
ent (
WC
M) p
roje
ct th
ese
conc
erns
will
be
addr
esse
d fo
r the
UN
ba
sed/
host
ed W
eb S
ites.
The
site
and
pa
ge te
mpl
ates
will
link
to th
e st
anda
rd p
ublis
hing
mod
ules
and
use
pr
oced
ures
that
will
add
ress
dat
a pr
ivac
y ris
ks. I
n ad
ditio
n th
e W
CM
sy
stem
that
hos
ts th
e w
eb si
tes w
ill b
e ar
chite
cted
not
to e
xpos
e an
y in
tern
al
info
rmat
ion
to th
e pu
blic
. Thi
s way
the
UN
will
mee
t the
se re
quire
men
ts w
hen
publ
ishi
ng in
form
atio
n on
UN
bas
ed
web
site
s. Th
e im
plem
enta
tion
will
de
pend
on
the
addi
tiona
l pol
icie
s tha
t ne
ed to
be
crea
ted
unde
r the
re
com
men
datio
ns o
n pa
ragr
aphs
10
CO
NFI
DEN
TIA
L –
DR
AFT
AU
DIT
RES
ULT
S
OIO
S/IA
D A
ssig
nmen
t No.
AP2
011/
626/
3
and
14.
4 30
Th
e D
epar
tmen
t of
Pu
blic
In
form
atio
n sh
ould
, in
cons
ulta
tion
with
the
Off
ice
of
Lega
l A
ffai
rs,
deve
lop
guid
elin
es
for
dete
rmin
ing
whe
n a
Uni
ted
Nat
ions
pu
blic
atio
n an
d w
ebsi
te c
onte
nt a
re s
ubje
ct
to
tradi
tiona
l co
pyrig
ht
prot
ectio
n,
and
whe
n al
tern
ativ
e fo
rms
of a
ttrib
utio
n an
d lic
ense
s are
per
mis
sibl
e.
Im
porta
nt
(Med
ium
)
5 35
Th
e C
hief
Info
rmat
ion
Tech
nolo
gy O
ffic
er
shou
ld:
(a
) de
fine
min
imum
se
curit
y re
quire
men
ts
to
be
incl
uded
in
th
e co
ntra
ctua
l ar
rang
emen
ts w
ith t
hird
par
ty
prov
ider
s of w
ebsi
te h
ostin
g, a
nd o
pera
tion
leve
l ag
reem
ents
w
ith
depa
rtmen
ts
and
offic
es
with
in
the
Uni
ted
Nat
ions
th
at
prov
ide
host
ing
serv
ice;
and
(b)
est
ablis
h cr
iteria
for
col
lect
ing,
and
ana
lyzi
ng a
nd
repo
rting
web
site
stat
istic
s.
a)N
ob)
Yes
Impo
rtant
(M
ediu
m)
a)
Impl
emen
ted
OIC
T ha
s alre
ady
defin
ed m
inim
um
secu
rity
requ
irem
ents
for a
pplic
atio
ns
and
web
site
s as p
art o
f the
ICT
Proj
ect M
anag
emen
t Fra
mew
ork.
Thi
s in
form
atio
n is
ava
ilabl
e on
iSee
k (h
ttp://
isee
k.un
.org
/web
pgde
pt16
30_2
2.as
p?de
pt=1
630)
und
er th
e “T
echn
olog
y Po
licie
s - In
form
atio
n Se
curit
y” w
eb p
age.
The
se
requ
irem
ents
whi
ch a
re b
ased
on
best
pr
actic
es a
nd in
clud
e sp
ecifi
c re
quire
men
ts a
nd se
curit
y co
ntro
ls fo
r th
e U
nite
d N
atio
ns c
an b
e ea
sily
in
clud
ed in
con
tract
ual a
rran
gem
ents
w
ith th
ird p
arty
pro
vide
rs o
f web
site
ho
stin
g an
d op
erat
ions
leve
l ag
reem
ents
with
dep
artm
ents
and
of
fices
with
in th
e U
nite
d N
atio
ns th
at
prov
ide
host
ing
serv
ices
.
OIC
T al
so p
rovi
des g
uide
lines
for
info
rmat
ion
secu
rity
risk
asse
ssm
ents
us
ing
the
OC
TAV
E (O
pera
tiona
lly
Crit
ical
Thr
eat,
Ass
et, a
nd
Vul
nera
bilit
y Ev
alua
tion)
m
etho
dolo
gy w
hich
is a
n ap
prov
ed
UN
stan
dard
(ht
tp://
isee
k.un
.org
/Lib
rary
Doc
umen
ts/
1637
-201
1010
7160
4265
7866
71.d
oc).
Th
e In
form
atio
n Se
curit
y Se
ctio
n of
O
ICT
prov
ides
supp
ort f
or p
roje
ct
cons
ultin
g an
d ris
k as
sess
men
t to
depa
rtmen
ts a
nd o
ffic
es th
at w
ish
to
impl
emen
t the
met
hodo
logy
.
CO
NFI
DEN
TIA
L –
DR
AFT
AU
DIT
RES
ULT
S
OIO
S/IA
D A
ssig
nmen
t No.
AP2
011/
626/
3
Reg
ardi
ng th
e cr
iteria
for c
olle
ctin
g,
anal
ysin
g an
d re
porti
ng w
ebsi
tes
stat
istic
s, O
ICT
belie
ves t
hat t
hey
shou
ld b
e de
fined
by
each
Bus
ines
s O
wne
r in
light
of t
he sp
ecifi
c re
quire
men
ts fo
r the
ir w
ebsi
te.