Welcome to AIC 2007. SAFETY ANNOUNCEMENT Ladies and Gentlemen, your attention please. There are no...
-
Upload
victoria-thornton -
Category
Documents
-
view
212 -
download
0
Transcript of Welcome to AIC 2007. SAFETY ANNOUNCEMENT Ladies and Gentlemen, your attention please. There are no...
Welcome to AIC 2007
SAFETY ANNOUNCEMENTSAFETY ANNOUNCEMENT
• Ladies and Gentlemen, your attention please.
• There are no tests of the fire alarm system scheduled for today, so if you do hear the fire alarm, which is a siren, or announcements asking you to leave the building, please leave immediately by the nearest available exit.
• Staff in High Visibility Jackets will direct you to the assembly point.
• Please take a moment to locate the exits around you now.
• Thank you.
Matt DeaconChief Architectural Advisor
Microsoft UK
Ed GibsonChief Security Advisor
Microsoft UK
Lord Erroll
20/04/23 9
Lord Erroll - Merlin
Member of the HOUSE of LORDS - an Independent Peer
Select Committee on Science & Technology – Personal Internet Security
PITCOM Parliamentary Information Technology CommitteeEURIM European Information Society Group (Director)LASSeO Local Authority Smart Standards e-OrganisationAPIG All-Party Internet Group (Secretary) E-RA E-business Regulatory Alliance (President)ISSA UK Information Systems Security Association Advisory BoardNominet UK Policy Advisory BoardAll-Party Group for Entrepreneurship (Vice Chair)
Knuru.comwww.SecretSommelier.comCRC
20/04/23 10
Preconceptions
What did you
expect me to be like?
20/04/23 11
MerlinMerlin
20/04/23 12
A LORDA LORD
20/04/23 13
I was in Software Development
There are 10 kinds of people in the world:
Those who understand Binary And those who don’t
=====================================================
Now I’m in Business Development
20/04/23 14
Me at my desk in the Lords
20/04/23 15
What happens to your castle if you get on the wrong side of the Executive
Old Slains, blown up in 1595
©Parliamentary copyright 01/07H O U S E o f L O R D S
20/04/23 17
What I’m going to coverInfluences on legislation
Where I’m coming from Priorities & Issues of Concern Transformational Government Globalisation Professional Qualifications
4
Influencers and Regulators• EU
• CEN TC 224 WG15 PUKE
• MSS – SAG
• Parliament• Select Committees
• EURIM
• AP Internet Group
• ICT Conferences• MS Architect Insight
• Govt. Department• Home Office
• DTi
• Regulator• OFCOM
• Industry Body• Intellect
• E-RA
20/04/23 19
Parliamentary Groups
Select Committees All-Party Parliamentary Groups
PITCOM, EURIM APIG (ISPA, ITSPA, EURISPA) APPG on ID Theft
Parliamentary Office of Science & Technology Receptions & Presentations Direct Access
20/04/23 20
Legislative Process
EXECUTIVE White paper – Consultation - Draft Bill
PARLIAMENT Bill goes through both Houses
EXECUTIVE Statutory Instruments (Negative or Affirmative Resolution)
20/04/23 21
WHERE I’M COMING FROM
I’m a Crossbench (Independent) Peer
c. 760 Lords, nearly 1/3rd Independent, not salaried!-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Sensible regulation is required, - but -I am concerned about
Over-regulation Increasing power of the Executive
9
20/04/23 22
Life is to be livedPuritanism is the haunting fear that
someone, somewhere may be
enjoying themselves
Risk Takers vs. Safety & Security
Entrepreneur vs. Corporate
20/04/23 23
The Citizen & The StateThe Citizen & The State“We must help citizens - for their own good”
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
LIGHT TOUCH REGULATION--------------------------------------------------------------------------------------------------------------------------------------------------------------------
Regulations are for your enemies
Laws often fail to prevent what they forbid
It is pointless passing laws that can’t be enforced
20/04/23 24
Rules cannot control a Complex System
A complex system is not deterministic
An identical set of circumstances will have different outcomes on subsequent occasions
Rules only affect a few nodes and links The law of unintended consequences
Define boundaries to behaviour Common Law (British Law)
YOU – I.T. ARCHITECTS
• YOU HAVE A SERIOUS RESPONSIBILTY
• You must protect the individual • DPA
• Chinese Walls
• Abnormal access
• Unauthorised access
• Social engineering
20/04/23 26
GOVERNMENT CONCERNS
But first:
Who do you mean by “The Government”?
Parliament (the legislature)?
The Executive (civil service, regulators)?
EU (80% of laws stem from EU directives)?
16
20/04/23 27
Transformational Government
Data Sharing
Identity Management
Shared Services (procurement)
Prevention of Crime
20/04/23 28
Other Issues
Personal Safety on the Internet Critical National Infrastructure CMA – Hacker Tools & Pen Testing RIPA part 3 - Keys Data Retention (ATCSA)------------------------------------------------------------------------------------ Internet Governance TV Without Frontiers (TVWF) IP & DRM
20/04/23 29
Compliance
Sarbanes-Oxley Basel II Rome 2 ISO 27001
Will there be a SOX equivalent in the EU?
How do you make provision for uncertainty?
20/04/23 30
POLITICAL PRIORITIES
Identity is on the political agenda
E-Crime is climbing steadily---------------------------------------------------------
Which is more important?
20
What is the purpose of I.D.?-------
To help you and keep you safe.To facilitate business.
Central Government – CONTROL – Unique I.D.
Local Authorities – DELIVERY – Federated I.D.
Internet – ASSURANCE – InfoCard certificates
20/04/23 32
People can be Seduced
MoneyIdealsSocial Engineering
20/04/23 33
GLOBALISATIONGLOBALISATION
Web 2.0 & Software as a Service Location of data store (Patriot Act, RIPA pt3 keys)
Mobile working & de-perimeterisation Flexibility will give competitive advantage Unavailable Corporate Knowledge is useless
23
Cross-Border data transfers (DPA, MOUs)
Walls no longer bound the company
20/04/23 34
Professional Standards
Who decides who should be qualified? BCS IISP ISC2
ISACA IET COMPTIA ISSA
It’s hard to define the qualifications
If it’s not the industry, it might be a civil servant
20/04/23 35
The Citizen & The StateThe Citizen & The State
They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor
safety. (Benjamin Franklin)
Timid men prefer the calm of despotism to the boisterous sea of liberty. (Thomas Jefferson)
BALANCEBALANCE
20/04/23 36
THE ARCHITECT
Your Insight will determine the acceptability and success of the interface between
the Citizen the SME the Corporate and Governments
Globally27
20/04/23 37
Or Merlin Hayor Merlin Errollor Lord Erroll
or The Earl of Erroll [email protected]
0700 540 2121
www.LordErroll.com
www.SecretSommelier.org
Architect Insight Focus Groups
The role of the architect
Call yourself an architect?
• Can we define what makes us architects?
• Can we detect it?
Consistent job titles
End “job title inflation”
Differentiate architects from other senior roles
(eg Technical Consultant and Software Engineer)
Identify future architects better
IEEE 1471-2000
Organisation and Role Types
StrategicArchitect
EnterpriseArchitect
InfrastructureArchitect
SolutionArchitect
Network Architect
SecurityArchitect
Data Architect
Operations Architect
Business Architect
WebArchitect
Organisation and Role Types
Corporate
Consultancy Vendor
StrategicArchitect
EnterpriseArchitect
InfrastructureArchitect
SolutionArchitect
Generic
Architectural Role Types
Strategic Enterprise Infrastructure Solution
Corporate
Consultancy Vendor
IT Architect
Architectural Role Capabilities
Strategic Enterprise Infrastructure Solution
Generic
Corporate
Consultancy
Vendor
IT Architect
Focus group agenda
• Session 1 (now)• Questions?
• Meet & greet
• Start discussions!
• Session 2 (Day 1: 18:40 – 19:10)• Continue to focus...
• Session 3 (Day 2: 08:30 – 09:00)• Status quo
• Cross-pollination of ideas
• Session 4 (Day 2: 14:00 – 14:50)• Quantify, Conclude and Deliver
Room Facilitators
Matt DeaconAndy James (Solidsoft)Charles Young (Solidsoft)Jeremy Palmer
Mike Lloyd (Carbonflame)Paul CrossRichard Godfrey
Andrew Macaulay (Capgemini)Sam Lowe (Capgemini)Andrea WesterinenIain Mortimer
Ron JacobsBeat SchweglerSimon Thurman
Thank you!
Thank you!