FOI2020/00049: Data Centres, Cyber Security, Contracts
Case reference FOI2020/00049
Published 8 July 2021
Request
Request Received: 21 February 2020
I seek the following information:
1. Are the Data Centre's operated by or for the organisation fit for purpose? For example, is there a Business Continuity Plan, is there Disaster Recovery in place or is it a single site?
2. Is there any capital investment in data centres planned in the next 36 months? For example, Mechanical & Electrical or refresh of equipment within the DC such as network, storage area network?
3. Is data privacy and or information security compliance a priority for the organisation's board?
4. On your Organisation's risk register, are there any Information Technology related risks? i) If time/ cost allows, please list the top three related risks.
5. Are the cyber security vulnerabilities within the organisation's existing Information Technology estate increasing? i) Has the organisation had a security breach in the past 12 months?
6. Did the organisation meet its Information Technology savings target in the last Financial Year?
7. What percentage of Information Technology budget is currently allocated to "on-premises" capability vs "cloud" capability?
8. Does the organisation have the skills and resource levels necessary for moving to the cloud?
9. What percentage of the Information Technology department headcount are software developers?
10. In relation to contracts with Amazon Web Services, Microsoft for Azure and/or Google for Google Cloud, was the monthly expenditure higher than budgeted? i) If yes, has the organisation been able to subsequently reduce the cost whilst maintaining service levels for users?
Response
Response Sent: 24 March 2020
Full details of this response is provided in the attached document.
Documents
This is UK Research and Innovation's response to a freedom of information (FOI) or environmental information regulations (EIR) request.
You can browse our other responses or make a new FOI request.