Request and response:
1a. Approximately how many members of staff do you have?
1b. Approximately how many contractors have routine access to your information?
At the time of this request, The National Archives currently employed 580 full time equivalent members of staff. There was one contractor with access to our information.
2a. Do you have an information security incident/event reporting policy/guidance/management document(s) that includes categorisation/classification of such incidents?
2b. Can you provide me with a copy of the latest version of these document(s)?
Yes, please see attached document.
Parts of this document have been redacted under sections 31, 36 and 40 of the Freedom of Information Act. Please see the Explanatory Annex at the end of this response for full details as to why these exemptions have been applied.
3a. Do you know how many data protection incidents your organisation has had since April 2011? (Incidents reported to the Information Commissioners Office (ICO) as a Data Protection Act (DPA) breach)
3b. How many breaches occurred for each Financial Year the figures are available for?
4a. Do you know how many other information security incidents your organisation has had since April 2011? (A breach resulting in the loss of organisational information other than an incident reported to the ICO, eg compromise of sensitive contracts or encryption by malware. )
4b. How many incidents occurred for each Financial Year the figures are available for?
5a. Do you know how many information security events/anomaly your organisation has had since April 2011? (Events where information loss did not occur but resources were assigned to investigate or recover, eg nuisance malware or locating misfiled documents.)
5b. How many events occurred for each Financial Year the figures are available for?
6a. Do you know how many information security near misses your organisation has had since April 2011? (Problems reported to the information security teams that indicate a possible technical, administrative or procedural issue.)
6b. How many near-misses occurred for each Financial Year the figures are available for?
Our network has an automated live monitoring system which reports possible issues nearly continuously. These are nearly always mitigated by automated defences and are therefore not categorised as near misses nor enumerated. The few issues requiring further action are enumerated in 5b.