GSI REVISION OF POLICIES Probation

Circular
PURPOSE
To notify staff of the revised or new policies which must be implemented before
joining the GSi Community.

REFERENCE NO:
ACTION
29/2005
Chief Officers must sign off and implement the following NPS Policies.
They must also make sure that all Area staff are trained and made aware of the
implications of these NPS Policies. ISSUE DATE:
20 April 2005
SUMMARY
This set of policies fulfils the requirement to join the GSi Community and IMPLEMENTATION DATE:
rationalises existing policies and creates several new policies such as Immediate
Protective Marking. These policies are intended to protect NPS Authorised
Users, Offenders and Victims. These policies have been widely circulated and EXPIRY DATE:
in many cases merely reflect an updated version of an existing NPS Policy. March 2006

RELEVANT PREVIOUS PROBATION CIRCULARS TO:

PC45/2003 Information Security Programme Chairs of Probation Boards
PC66/2003 SEM Update Chief Officers of Probation
PC69/2003 Vetting Protocol Secretaries of Probation Boards

CONTACT FOR ENQUIRIES CC:

Kathryn Perry, NOMS OIS (Offender Information Services) 020 7217 0783 Board Treasurers
Information.security@homeoffice.gsi.gov.uk
Regional Managers
IT/System/Security Managers

AUTHORISED BY:
Bob Nicholls, NOMS Offender
Information Services

ATTACHED:
N/A

National Probation Directorate

Horseferry House, Dean Ryle Street, London, SW1P 2AW General Enquiries: 020 7217 0659 Fax: 020 7217 0660

Enforcement, rehabilitation and public protection

POLICY DISTRIBUTION AND SUMMARY
Due to the number of attachments to this PC it has been decided to include these on a CD-Rom which will be sent to
Chief Officers of Probation Areas under separate cover. This CD will include authorised security policies for the Service.
Four policies will shortly be sent to you under separate PC.

Policy Reference Status

NPS Business PIT-SEC-POL-0015 To follow
Continuity Policy
NPS Clear Desk Policy PIT-SEC-POL-00013 To maintain the integrity of NPS and other Included
protectively marked or confidential information/
Personal Data by securely storing Data when not in
use.
NPS Community PIT-SEC-POL-0001 To ensure compliance with the NPS Policies, Included
Information Security Government Standards, Manuals and Schemes and
Policy that to ensure that the obligations of the NPS Areas
are recognised.
NPS Data Protection PIT-SEC-POL-0005 To ensure that all Areas comply with the Data Included
Policy Protection Act 1998.
NPS Email and Internet PIT-SEC-POL-0002 To provide a framework for access to Email and Included
Communications Policy Internet and acceptable use of the Communication
Infrastructure.
NPS Incident PIT-SIP-POL-0018 To follow
Management Policy
NPS IS & Network PIT-SIP-POL-0016 To follow
Monitoring Policy
NPS IT Asset and IT PIT-SIP-POL-0001 To ensure that all IT Assets and IT Media are Included
Media Disposal Policy disposed of in an appropriate manner to avoid any
unauthorised disclosure of NPS Information.
NPS Logical Access PIT-SIP-POL-0008 To ensure the Confidentiality of NPS Information by Included
Control Policy means of stringent Logical Access Control baseline
requirements.
NPS Password Policy PIT-SIP-POL-0004 To provide a strong identification and authentication Included
policy and associated procedures to help prevent
unauthorised access to IT Systems and to assist any
audit and investigation activities.
NPS Physical Security PIT-SIP-POL-0015 To follow
Policy
NPS Protective Marking PIT-SIP-POL-0017 To interpret the Government Protective Marking Included
Policy Scheme for the National Probation Service, set out
how it will be applied in the Service, and outline the
rules for compliance with this policy.

PC29/2005 - GSi Revision of Policies 2

NPS Remote Working PIT-SIP-POL-0007 To provide the framework for the development of Included
Policy local procedures, Standards’ and guidelines that
each Local System Controller must put in place to
support Confidentiality and Integrity of all NPS
Information when Authorised Users conduct Remote
Working.

NPS Vetting Policy PIT-SIP-POL-0003 To ensure that all NPS staff undergoes Vetting Included
procedures before taking up any position in the NPS
in order to identify candidates who may be unsuitable
for certain posts within the NPS Area, especially if it
involves contact with children or other vulnerable
people.
NPS Virus and PIT-SIP-POL-0009 To provide a clear structure for preventing and Included
Malicious Software handling incidents concerning
Policy Computer Viruses and Malicious Software or Code.

PC29/2005 - GSi Revision of Policies 3