VPDSF Assessment Model and PDSP

What Is It?

  • The Office of the Victorian Information Commissioner (OVIC) have developed the Victorian Protected Data Security Framework (VPDSF).  It is designed to assist organisations to self-assess against the Victorian Protected Data Security Standards (VPDSS).  The outcome of the assessment and the conducting of the Security Risk Profile Assessment (SRPA) delivers a risk-based Protected Data Security Plan (PDSP).  Through this process organisations gain a deeper awareness of their information security risks and roadmap

What Problem does it Solve?

  • The Victorian Government has a data protection framework that is required for all organisations that fall under its purview. To ensure sensitive information is collected, stored and managed securely, they require all State Government entities to meet and comply with certain requirements in relation to IT security.
  • Without VPDSF accreditation, an organisation’s ability to deliver services to the Victorian Government will be limited.
  • The area of Information Security and the accreditation process itself can be complex and many organisations may not have this knowledge in-house and require additional guidance and support to effectively and efficiently navigate the process.

What Problem does it Solve?

  • The Victorian Government has a data protection framework that is required for all organisations that fall under its purview. To ensure sensitive information is collected, stored and managed securely, they require all State Government entities to meet and comply with certain requirements in relation to IT security.
  • Without VPDSF accreditation, an organisation’s ability to deliver services to the Victorian Government will be limited.
  • The area of Information Security and the accreditation process itself can be complex and many organisations may not have this knowledge in-house and require additional guidance and support to effectively and efficiently navigate the process.

Benefit to your Business

  • Compliance with Victorian Government’s requirements and controls in order to meet VPDSF obligations
  • Helps identify information assets (via an Information Asset Register (IAR)) that need to be protected using a risk-based approach
  • Provides a level of preparedness for organisations wishing to become fully ISO27001 certified
  • Improved prevention and detection of cyber security attacks through greater awareness and strong security controls
  • Improved awareness and communication of information security to the Executive Team and Board

Our Solution

  • We have developed a unique approach through the creation of sub-elements of the VPDSS to enable a more granular assessment of maturity and thus a more targeted evaluation of risk and resultant actions.  We implement this via a built-for-purpose solution (Insight Rover) which enables the delivery of;
    • VPDSS Maturity Assessment
    • Protective Data Security Plan (PDSP)
  • Security Risk Profile Assessment (SRPA)
  • Information Asset Register (IAR)

Our Solution

  • We have developed a unique approach through the creation of sub-elements of the VPDSS to enable a more granular assessment of maturity and thus a more targeted evaluation of risk and resultant actions.  We implement this via a built-for-purpose solution (Insight Rover) which enables the delivery of;
    • VPDSS Maturity Assessment
    • Protective Data Security Plan (PDSP)
  • Security Risk Profile Assessment (SRPA)
  • Information Asset Register (IAR)

<<  BACK TO CYBER SECURITY SERVICES

<<  BACK TO CYBER SECURITY SERVICES