Home
Topics
Compliance and Risk Management
Compliance Regulation and Standard Requirements
Good Practice Guide 13

Definition

Good Practice Guide 13

Good Practice Guide 13 is a set of IT controls that form part of the Code of Connection (CoCo), a prescriptive technical standard that public-sector organizations must meet in order to gain access to the UK Government Connect Secure Extranet (GCSX), which is a secure wide-area network (SWAN) for the sharing of information among central government departments and local authorities.

Specifically, Good Practice Guide 13 defines requirements for protective monitoring -- comprised of tasks such as event log management and the use of intrusion detection and prevention systems -- that local authorities must comply with in order to prevent accidental or malicious data loss. As connection to the Government Connect Secure Extranet entails potential access to citizens' health documentation and/or criminal records, among other sensitive information sources, compliance with CoCo and Good Practice Guide 13 is important for protecting privacy and preventing costly data breaches

.

Related glossary terms: IFRS (International Financial Reporting Standards), National Health Service (NHS), Code of Connection (CoCo), Information Assurance Standard 6 (IAS 6), EU Data Protection Directive (Directive 95/46/EC), Privacy and Electronic Communications Regulations (PECR), Financial Services Authority (FSA), Basel II, British Standards Institution (BSI), UK Government Connect Secure Extranet (GCSX)

This was last updated in December 2010

Posted by: Margaret Rouse

Email Alerts

Register now to receive SearchSecurity.co.uk-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

More News and Tutorials

PCI survey finds more compliance spending planned to meet guidelines

A survey of 500 security professionals found that, although the compliance initiatives are burdensome, they are improving security at most organisations.
NuBridges update enables simultaneous data center tokenisation

NuBridges Inc. has released an updated version of its enterprise tokenisation product, seeking to eliminate a key pain point for large companies implementing tokenisation.
PCI tokenization guidance could benefit payment processors

Framework could help merchants decide how to invest in new card data encryption and tokenization technologies being offered by payment processors.

Articles

Do you have something to add to this definition? Let us know.

Send your comments to techterms@whatis.com

Research More Tech Terms

Search thousands of tech definitions
Browse tech definitions
Browse Alphabetically:
- A
- B
- C
- D
- E
- F
- G
- H
- I
- J
- K
- L
- M
- N
- O
- P
- Q
- R
- S
- T
- U
- V
- W
- X
- Y
- Z
- #

Powered by WhatIs.com

File Extensions and File Formats

File Extension and File Formats List:

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
#

Powered by WhatIs.com

More from Related TechTarget Sites

Networking UK
Virtual Data Centre
Data Management UK
Security
Cloud Security
Security IN

Networking UK
- O2 signs UK deal for mobile management offering: SNUK news in brief
  
  SearchNetworkingUK Briefs provides a summary of the week’s new product, services and appointment announcements. This week includes mobile management and much more.
- FCoE or iSCSI? Doesn’t matter! It’s about the Ethernet
  
  Some question the path to network convergence - is it through FCoE or iSCSI? Either way, preparing the existing infrastructure will be key to a healthy network environment.
- Is cloud computing bad for your networking career?
  
  Many network managers may have an emotional resistance to cloud computing, but experts explain the economic benefits and positive career impact outsourcing data centre resources can have.
Virtual Data Centre
- Download IT in Europe: August 2012
  
  This month's IT in Europe examines the views of the experts on the new EU framework, and assess what it means for European IT managers.
- Download Technology Priorities for 2012
  
  Download Technology Priorities for 2012
- Download IT in Europe: June 2012
  
  This month's IT in Europe examines how you can prepare for the new EU data regulations.
DataManagement UK
- Big data roundtable webcast: gaining value from big data
  
  Roundtable discussion on business value of big data, chaired by Brian McKenna, Editor, SearchDataManagementUK, and featuring Mike Ferguson, Roxane Edjlali (Gartner), Joshua LeCure (GlaxoSmithKline).
- 2012 training courses: BI, data management, data warehousing
  
  Find out where to hone your business intelligence, data management and data warehouse skills with this list of training courses for 2012.
- Poor data quality: what is dirty data costing UK organisations?
  
  Poor data quality can have serious financial consequences for businesses. Read about the current state of data quality management at UK companies, including dirty data problems.
Security
- RSA Silver Tail improves online fraud detection, enterprise security
  
  Fraud prevention for the Web: RSA Silver Tail sets stage for enterprise-level security with big data and brand new interface.
- Users may remain vulnerable despite Oracle Java patch release
  
  Oracle has issued a new security patch for Java, but only 7% deployed the patch before it.
- Gary McGraw: NSA data collection programs demand discussion, scrutiny
  
  Opinion: Gary McGraw details the various and sundry NSA data collection programs and explains why all its efforts demand new discussion and scrutiny.
Cloud Security
- Three practices to prevent cloud vendor lock-in
  
  Expert Ed Moyle offers three tips for preventing cloud lock-in long after contract negotiations are complete.
- Gartner: Negotiate cloud contracts with detailed security, control
  
  When negotiating with cloud providers, enterprises must demand cloud contracts with specific security and control provisions, Gartner analysts say.
- Cloud data breach notification: Defining legal obligations
  
  Francoise Gilbert provides a cloud data breach notification overview for enterprises concerned about placing personal information in the cloud.
Information Security
- Security tech market set to grow 8.7% in 2013, says Gartner
  
  The worldwide security technology and services market will reach $67.2bn in 2013, up 8.7% from 2012, according to research firm Gartner
- A malicious charger could hack Apple devices easily, claim researchers
  
  A modified phone charger or battery could be used to hack Apple devices, say researchers from Georgia Tech
- How to reduce IT security risk with IT asset management
  
  IT asset management expert Barb Rembiesa explains how ITAM best practices like IT asset standardization and rationalization reduce IT security risk.

All Rights Reserved,Copyright 2008 - 2013, TechTarget