• Home
• About Us
  • Services
  • Case Studies
  • Clients
  • Framework Agreements
  • Certifications and Accreditations
  • Memberships
  • History
  • Contact Us
• In Focus
  • Improving Data Handling
  • UK National Security Strategy
  • UK Cyber Security Strategy 2009
  • Through Life Capability Management (TLCM)
  • Information Sharing
  • Information Exploitation
  • Connecting to Secure Government Networks
  • Acquisition Reform
  • Business Continuity Planning and Management
  • Information Superiority
  • London 2012 Olympic and Paralympic Safety and Security Strategy
  • Addressing Sustainability
• Services
  • Enterprise Analysis and Architecture
  • Technology and Business Change
  • Information Security
  • Secure Systems
  • Project and Programme Management
• Markets
  • Government
  • Defence
  • Critical National Infrastructure
  • Aerospace
• Newsroom
  • Press Releases
  • Events
  • Media Contacts
• Publications
  • White Papers
  • Case Studies
  • Brochures
• Careers
  • Opportunities and Development
  • Our value to clients
  • VEGA People
  • Consultants
  • Career Events
  • Vacancies
  • Upload your CV
  • Careers Contacts
• Contact Us
  • Locations

Information Assurance Maturity Model

The Information Assurance Maturity Model (IAMM) has been created by the Cabinet Office and CESG to assist Senior Information Risk Owners (SIRO) in putting together effective change programmes in their respective organisations, in order to improve information risk management and information assurance.

The IAMM brings together the requirements of the Security Policy Framework (SPF), ISO27001 and is aligned with The National Information Assurance Strategy.

The Cabinet Office is using the IAMM to set targets and measure progress of information risk management improvements across all UK Central Government Departments. The objectives are to bring all departments to an acceptable level of information assurance maturity, and improve the governance around information risk management across Central Government.

How can VEGA support Information Assurance Maturity Model requirements?

Determining the evidence and completing the IAMM is labour intensive. Government departments have the option of auditing themselves or procuring the services of independent assessors to assist in discharging their responsibilities under the IAMM.

It is the combination of accurate completion of the IAMM and an expert audit that provides the departmental assurance to the Cabinet Office. Experience has shown that an independent audit can provide a better quality product which may be used to greater affect, both as a change agenda within the department, and as the evidential element of the Cabinet Office report.

VEGA has a well qualified capability to provide independent audit, assessment and advice to Government departments on Information Assurance in accordance with the Cabinet Office requirements. If required, it could also supply experienced resource to prepare the evidence to complete the report against the IAAF and undertake the data acquisition task for the IAMM.

Contact VEGA for more information about our information assurance maturity model services