Cloud Policy

Policy Statement

The Western Australian Government is committed to moving away from being an owner of information and communications technology (ICT) assets to becoming a consumer of technology services from specialist third party providers. Central to this new direction is the adoption of cloud services that enable Government to be more flexible, scalable and deliver better services to more people.

To ensure government is capable of embracing this new environment, agencies should ensure that the appropriate skills are available to successfully identify, deploy and maintain cloud solutions that aid in the realisation of business objectives while effectively managing risk and achieving value for money.

Purpose

The purpose of the Western Australian Government Cloud Policy (the Policy) is to establish a cloud mindset for the consumption of infrastructure, software and platforms and encourage the widespread adoption of cloud services across the Western Australian Government.

Objectives

The objectives of the Policy are to:

  • establish the expectation across government that cloud services should be adopted in favour of traditional, own and operate ICT solutions where appropriate;
  • create a more flexible, connected and agile public sector that fully understands the cost of its ICT;
  • build the requisite skills within Government’s ICT workforce to effectively leverage cloud offerings to deliver new and improved services; and
  • reduce Government’s physical footprint of owned infrastructure such as replicated servers and static storage.

 

Principles

The following principles describe the priorities of the Western Australian Government in its adoption of cloud services.

Consumption by default

Agencies are skilled experts in planning, consuming and leveraging cloud services that enable the achievement of business objectives. Costs are fully understood and agencies only pay for what they use.

High agility, scalability and mobility

Resources are available in real time, on demand, anywhere, on any device, and are not limited to the physical constraints of agency owned infrastructure.

Simplified, connected Government

Agencies are able to share information via interoperable cloud services, supporting interagency collaboration and facilitating the development of integrated government services.

Strategic ICT Delivery

Agency ICT functions work alongside business managers to deliver strategic objectives and enhance service delivery, while dedicating minimal resources to the management of physical assets.

Holistic Security

Agencies are able to leverage the capabilities of mature cloud providers with state-of-the-art security and dedicated teams of professionals monitoring and responding to threats. Secure, cloud services align with and complement agencies own security policies and practices.

Resilient services that ensure business continuity

The failure of one component of cloud services has less impact on overall service availability and reduces the risk of downtime. Agencies adopt cloud services that are consistent with their business continuity and disaster recovery plans.

Risk-based Decision Making

Agencies identify, assess and understand the risks of cloud services, including the security and privacy of data being stored and maintained by third party providers, and consider these risks in their cloud planning.

Definitions

Cloud Computing and the cloud service models (including SaaS, PaaS and IaaS) are defined in NIST Special Publication 800-145 in accordance with National Institute of Standards and Technology (NIST) definitions, available from:

http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-145.pdf.

Related Guidance

Information and guidance on cloud is available from the Office of the Government Chief Information Officer (GCIO) website at www.gcio.wa.gov.au.

(Visited 1,032 times, 1 visits today)
Posted in Document Tagged with: , , , , , , ,
0 comments on “Cloud Policy
1 Pings/Trackbacks for "Cloud Policy"