JMLogic Consultancy

e-Governance Project Delivery Framework

Leadership and Direction for Value, Quality, and Security in Project Delivery 1. Value Delivery Governance ensures projects deliver measurable benefits aligned with funded strategy and stakeholder legitimate interests Understanding of globally influencing standards: - ISO/BS: Strategic alignment, benefits realization, continual improvement - PMI (PMBOK): Business case, value delivery system, performance domains -,PRINCE2: Business case primacy, management‑by‑exception, benefits tracking - PM²: Business case, solution definition, phase gates…...

e-Governance Project Delivery Framework Leadership and Direction for Value, Quality, and Security in Project Delivery 1. Value Delivery Governance ensures projects deliver measurable benefits aligned with funded strategy and stakeholder …

Digital Governance Knowledge Pointer
-Cybersecurity Competency Framework

Cybersecurity is regulatory guidance, community standards, professional body of knowledge, threat intelligence, and security products that support first time right the coherent and complete enabling knowledge, skills, attitude and materials of doing the cybersecurity functions of identification, protection, detection, response, recovery and investigation.

Cybersecurity is reported and attested TRUST on the ability of the organization to make visible the critical information assets and risks; and to immediately and reliably plan-do-check-act the required security controls to face the active and innovative threat agents that are also consistently practicing the plan-do-check-act of realizing the objectives of the cyber-kill chain.

Cybersecurity is gathered and maintained INTELLIGENCE on the various system or product vulnerabilities, and attack surface and vector found in the cyberspace of people, policy, data, application, network, storage, middleware, and physical infrastructure of the digital technology enabled services of value creation and customer relationship.

Cybersecurity is organization, policy, process, product and provider of initiating, planning, delivering, operating, and improving the control objectives of preventing and responding to cybercrime in its variety of manifestation as SECURITY INCIDENT that undermines life, safety and privacy.

It is the FUNCTION of an authorized and funded organization in the whole enterprise to support the mandated obligations of assuring information confidentiality, process integrity, system reliability, data privacy, infrastructure resilliency, and user safety in the cyberspace of digital technology enabled services of government and private sectors.

Cybersecurity is ex*****on of the activities and delivery of results that are commonly linked to the end to end responsibilities of the CHIEF INFORMATION/CYBER SECURITY OFFICER and TEAM.

1. Protect, shield, defend, prevent
2. Monitor, hunt, detect
3. Respond, recover, sustain
4. Management, governance, compliance, education, risk management

Cybersecurity is OVERSIGHT on the implementation of agreed standards in security governance, asset visibility, risk and vulnerabilty assessment, secured acquisition and supplier security, regulatory compliance, and security operation.

It is an assurance platform for the organization to continuously deliver and improve what governance and management have agreed on what to achieve; what to maintain; what to prevent; and what to eliminate in demonstrating “safe cyberspace” of data, people and infrastructure of digital government, business, and home.

Cybersecurity is HUMAN ERROR to be admitted and resolved with appropriate awareness building, professional certification, and security alerts to act first time right the safety requirements of human digital presence in the cyberspace.

The common questions of understanding quality in the cybersecurity performance of government agency and business enterprise.

1. Value, threat, regulatory, and supplier context of cybersecurity

2. Good governance and management framework on cybersecurity

3. International community driven standards and published regulation on cybersecurity principles, performance and practices

4.. Organization, function, roles, and competency in achieving the statutory goals, and regulatory objectives of cybercrime prevention, response, and investigation, national cybersecurity plan, and NCERT.

5. Cyberkill chain, threat modeling, vulnerabity intelligence and assessment, and risk management

6. Methodologies and technologies of cybersecurity security control, and incident response and investigation

7. Training plan, user alert system, and professional competency certification on cybersecurity management and technology

The validation and verification of the right things to do in securing the sovereign cyberspace are done first time right with identified, analyzed, mapped and applied statutory and regulatory requirements, adapted international community driven practice standards, and threat intelligence database of globally recognized interest group and security product developers.

The networked society of globalization is connected trade, technology, knowledge, cybercrime, and Internet security.

Critical cybersecurity guidance finds its foundational knowledge source from countries that are considered principal in regulating the design, development, deployment, and operation of products and services that make up the cyberspace of the digital economy.

Cybersecurity in the digital economy is interest protection and benefit realization of its stakeholders that ensue from a cyberspace that behaves information confidentiality, process integrity, system availability. Infrastructure resilliency, data privacy, and consumer safety.

To join: https://forms.gle/bXgzKdrefiEs5RD66

Agile digital worker…

Reviewing the actionability of the incumbent power’s promise of digital governance

Essential questions of plan-do-check-act to report the achieved goals of digital transformation within the time horizon of its funding sponsor, project owner, project management, and operation team.

Q1:
What value to create
What value to maintain

Q2:
What risk to prevent
What risk to eliminate

Q3:
How value is created
How value is maintained

Q4:
How risk is prevented
How risk is eliminated

Q5:
Who is governance of accountability
Who is management of responsibility
Who is work of delivery-results

Q6:
When is miminum viable product released
When is minimum viable product integrated

Q7:
Where is location of consumer satisfaction
Where is location of sustained citizen support

Digital transformation of government and business is understanding, decision, and work that ensue from transparent, participated, and funded model of what to achieve, maintain, prevent and eliminate with digitalization of ease of doing business and efficiency in service delivery.

Basic requirements to actionability and auditability of sponsored deliverables of digital governance in government are well known in the rules and standards of practice:

1. GCIO organization, job roles, and plantilla position

2. Competency standards and certification to support governance and management of ICT in the organization

3. Quality management system in ICT service delivery and support, and master data

4. Cybersecurity Officer organization to support cybersecurity function and data protection

5. Cloud computing approach, service outsourcing, and public-private partnership.

6. Re-engineering of systems to match model of quality service and automation

7. Regulatory Impact Assessment to align laws, regulation and policy to principles and practices of ease of doing business and service delivery efficiency

8. National master data management, national identification system, digital signature, and free wifi of service interoperation and data driven governance.

SONA 2023