|
|
GMICT Policy Framework
Government of Malta ICT Policies, Directives, Standards and associated documents
http://ictpolicies.gov.mt
|
Introduction
MITA is responsible for the governance of the Government of Malta ICT Policies, Directives and Standards, collectively referred to as GMICT Policy. The function of compilation and publication of GMICT Policy lies in the Enterprise Architecture Unit within the Office of the CIO, with each GMICT Policy document being assigned to the appropriate Enterprise Architecture Domain/s.
Roles and Procedure
The compilation of policies and standards involves all relevant business and technical players including the following key players:
- Enterprise Architect - ICT Governance
- Chief Enterprise Architect and/or other Enterprise Architect/s
- The respective Domain Owner/s
- Compliance Manager
- An InfoSec Authority representative
- Legal Counsel
- Government representative/s
- Third parties, where appropriate
GMICT Policy documents are also reviewed by Chief Information Officers from Public Sector entities before being forwarded to the Chairman, CIO Council for authorisation to publish.
The Compliance Manager within the Business Excellence and Compliance Department of MITA carries out compliance audits to determine the degree of adherence to GMICT Policy. Amongst other things, this activity identifies those areas where improvements in the implementation of policies are required. The Compliance Manager is also responsible for the approval or otherwise of requests for exemption from specific policies, which are assessed through consultation with the appropriate experts.
Policy Framework
The GMICT Policy Framework will continue to evolve by consolidating the content of various related documents to make them work together as a consistent whole. These measures are aimed at making the complete GMICT Policy framework more flexible and maintainable.