Let’s get started on the journey now!

Tag: Cloud

  • Making sure you don’t CoP a packet – Managing third-party admins in the TSA

    Making sure you don’t CoP a packet – Managing third-party admins in the TSA

    Des Ward

    ,

    This is my next (albeit belated) article in my series of eight articles on the Telecoms Security Framework (TSA in common vernacular). If you’ve read “PAM in the TSA – whose definition is it anyway?” you’ll know that managing privileged access isn’t just about technology — it’s about control. In my previous article, “PAM in… Read more

  • What the CoP – Is the Cloud forecast clear for TSA?

    What the CoP – Is the Cloud forecast clear for TSA?

    Des Ward

    , , ,

    I often liken the process of achieving compliance with the Telecommunications Security Act (TSA) as being a journey, with many crossroads and pitfalls along the way. The devil is in the detail and there is a range of myths which can lead you into a cul-de-sac. The use of public Cloud services is often a… Read more

  • Are your consultants helping you on your TSA journey?

    Are your consultants helping you on your TSA journey?

    Des Ward

    ,

    I’ve been speaking to a range of stakeholders recently involved in the delivery of compliance regarding the Telecommunications Security Framework (also called the TSA). The overriding experience I’m hearing is one of consultancies using their existing approaches and processes without regard to the governance requirements of the framework implemented by the Telecommunications Security Code of… Read more

  • What the CoP – are you missing key supply chain measures?

    What the CoP – are you missing key supply chain measures?

    Des Ward

    , ,

    Introduction I’m seeing organisations who are looking the 54 Technical Guidance Measures within the Third party supplier measures 3 section as part of their compliance journey with the Telecommunications code of practice, yet are unclear on when the measures need to be addressed because they have a indicated date of evidence as being all new… Read more

  • What the CoP? Understanding the status of the TSA code of practice

    What the CoP? Understanding the status of the TSA code of practice

    Des Ward

    ,

    ‘Big fines if you don’t comply with the TSA’ is a common mantra you’ll hear from those selling TSA compliance to providers of public electronic communications networks and services (PECN and PECS), but what part does the Telecommunications Security code of practice (code of practice) play in the wider Telecommunications Security Framework? What is the… Read more

  • Five things that could be impacting your TSA programme

    Five things that could be impacting your TSA programme

    Des Ward

    ,

    It’s a new year and the first returns have been sent, but are there things that are likely to be hampering your TSA programme that you may not be aware of? In my experience of not just delivering compliance with CAS(T), HSCN but now the Telecommunications Security Framework (also called the TSA) there are five… Read more

  • Is the Cloud forecast becoming clearer?

    Des Ward

    Introduction The latest development in the Cloud strategy was announced by the Government Digital Service confirming a move from ‘Cloud First’ to ‘Cloud Native’. This is a key development, building on years of work to develop policy and standards for the delivery of Cloud Services to government, and the evolution of the service provider marketplace.  Key… Read more