“Information Assurance” is the term used widely, and particularly within the UK Government, for the overall business management of generating, rather than operating, a secure information environment.
It refers to the ability of the project or operational areas of the business to assure the executive, or external authorities or regulators, that security controls are effective in ensuring that the level of information security risk is within the overall business risk appetite and that those areas where risk is close to that appetite are appropriately monitored and managed.
We have extensive experience in working with central government departments, local and regional government organisations and their suppliers to help them achieve IA strategies or specific IA goals such as system accreditation or code of connection compliance.