Jerry Niman - Home - - IT Services
Home

Business Continuity Thought Piece

SUMS - September 2020

Wrote a briefing paper for SUMS to distribute to its members  on the topic of Business Continuity https://sums.org.uk/news/business-continuity-in-a-changed-world/

SUMS Consulting works for universities and is owned by universities. They are a not-for-profit membership organisation providing expert consultancy to the higher education sector.  Jerry Niman is one of their associate consultants.

Business Continuity Phase 4 Consultancy

Loughborough University - July 2017 to June 2020

Two packages of work with IT Services at Loughborough University. The first involved discussions with schools and professional service departments to understand how they depended on IT services, what they would do if these were interrupted, how long they could tolerate them being down and how the IT Services department could help with their business continuity arrangements. I produced a report summarising the interviews, making a number of recommendations and setting out the approach used so that it could be rolled out to other areas. The second package of work was to establish, by discussion with the members of the Infrastructure team, the inter-dependencies of the various technical services they are responsible for. This was captured as a dependency network together with an analysis of how quickly each service would be restored following a major disruption. This could be compared with the Maximum Tolerable Periods of Disruption (MTPoD) quoted by the schools and professional service departments, and any mismatches highlighted. This package of work also involved establishing the Business Continuity arrangements in the Service Desk, and highlighting areas for further development.

Office 365 Adoption Phase 1

University of Huddersfield - November 2018 to November 2019

Office 365 Business Case

Norwich University of the Arts - September 2019 to November 2019

Business Continuity Best Practice Guide

UCISA - July 2016 to March 2019

Lead author for a UCISA project to produce a best practice guide covering business continuity, and aimed at senior managers in Universities.

Office 365 Scoping

Royal Agricultrual University - September 2018 to November 2018

Office 365 scoping and policy review.

Departmental Review

SUMS - July 2018 to August 2018

Oxford University Research File Service

4C Strategies - December 2017 to February 2018

Working as an associate of 4C Strategies, ran two workshops for Oxford University to review the functional and non-functional requirements for a Research File Service. 4C had been engaged as the University wished to accelerate progress on the project and widen out the scope to include cloud based solutions to the requirement. Wrote up the workshops and, after discussions with a number of potential suppliers, drafted a summary report recommending a 'direction of travel' for the project.

Office 365 Business Case

Institute for Cancer Research - November 2017 to January 2018

Produced a full business case for the Institute of Cancer Research to migrate to Office 365 and Cloud computing. This examined the full range of benefits to the organisation and to users. A detailed financial appraisal showed genuine cash savings over the life of the project. The business case also addressed the security and confidentiality concerns that an organisation like the ICR needs to take into account.

Policy Review

University of Bolton - September 2017 to January 2018

Undertaking a detailed review of Information Security and Information Management policies at the University of Bolton. Making specific recommendations for improving the policy sets. Drafting a Information Retention policy and Information Retention Schedule.

VLE Technical Workstream

University of Wolverhampton - November 2016 to May 2017

Managing the Technical and Integration workstream for the project to introduce a new Virtual Learning Environment at Wolverhampton University.

Office 365 Planning Workshops

University of Wolverhampton - May 2017

Office 365 Privacy Impact Assessment

University of Reading - December 2016 to April 2017

Generic PIA

UCISA - February 2017 to April 2017

Producing a guide for the HE sector on conducting Privacy Impact Assessments, using the worked example of an implementation of Office 365.

Digital Platforms

University of Wolverhampton - June 2015 to August 2016

Project Managed the replacement of the current storage and computing infrastructure at the University of Wolverhampton with a hyper-converged solution.

Achieved reduction in running costs per VM and TByte of around 90% and reduction in carbon footprint of 56% per VM and 82% per TByte.

No unscheduled service outages during the migration of VMs from the old infrastructure to the new

This project won Customer Project of the Year award in the 2017 V3 Technology awards.

IT Risk Audit

University of Sussex Students' Union - June 2018 to August 2016

Conducted a complete assessment of all the IT related risks for the Sussex University Students' Union, including calibrated scales of impact and likelihood and an overall risk rating scheme. Produced and presented a report with recommendations.

Identity and Access Management

University of Wolverhampton - June 2016 to August 2016

Workshop, Business case, timeline and briefing documents covering the introduction of Identity and Access Management at the University of Wolverhampton.

SITS Upgrade

University of Wolverhampton - April 2016 to July 2016

IT Risk Management Review

University of Essex - April 2016

Conduct a review and update of the operational IT Risk register for the University of Essex and document an improved approach to the management of operational IT risks.

HR System Risk Assessment

University of Essex - March 2015 to February 2016

Undertake a Privacy Impact Assessment of the planned implementation of 'Self-Service' facilities for the existing HR system, and make appropriate recommendations.

Advise the University on developing a structured approach to the consideration of similar issues in future.

Information Security Training Market Research

UCISA - April 2015 to February 2016

Started a a brief study on behalf of UCISA to assess the information security training products currently on the market and in use in the sector, and the potential for a community purchase.

In the end, a suitable product was found and has been made available to UCISA organisations free of charge. The product has been very well received by the community.

Office 365 Privacy Impact Assessment

Brunel University - November 2015

Office 365 Project Review

Brunel University - July 2015 to October 2015

IT Policy Review Phase 2 part 1

University of Bradford - March 2015 to June 2015

Review existing Information Security and IT policies, regulations, codes of practice etc, redraft where necessary and draft new policies where required.

Office 365 Project

University of Bradford - December 2012 to February 2015

Upgraded the student email service at Bradford University from live@edu to Office 365.

Implemented the Office 365 collaboration platform for staff, replacing an on-site IMAP based email service, an outdated calendaring application and a separate utility to provide integration with mobile devices.

Conducted Privacy, Equalities and Sustainability impact assessments.

Information Security Policies Update

University of Sussex - December 2014 to February 2015

SharePoint Deployment

University of Bradford - September 2014 to January 2015

Model Regulations

UCISA - October 2013 to October 2014

Redrafting the Model IT Regulations published by UCISA, (the Universities and Colleges Information Systems Association).

These model regulation were published by UCISA in 2007 with the aim of providing a 'template' on which UK institutions could base their own IT regulations.

The current involves research into how the model regulations are used, and how they need to be updated to reflect changes since 2007. This will lead on to producing an updated set of model regulations.

Office 365 Privacy Impact Assessment

University of Essex - June 2014 to October 2014

Privacy impact assessment for the introduction of Office 365, plus a gap analysis of existing policies & regulations, and preparation of material for staff briefings.

DESFire Implementation Planning

Canterbury Christ Church University - January 2014 to August 2014

Undertook a Privacy Impact Assessment for the introduction of a new cloud based cashless payment system for catering at Canterbury Christ Church University.

Office 365 Privacy Impact Assessment

University of Sussex - July 2014

Undertake a privacy impact assessment of the introduction of Office 365, and a gap analysis of the existing policies and regulations related to it

Way to Pay Privacy Impact Assessment

Canterbury Christ Church University - January 2014 to July 2014

Undertook a Privacy Impact Assessment for the introduction of a new cloud based cashless payment system for catering at Canterbury Christ Church University.

Access Control

Canterbury Christ Church University - April 2012 to November 2013

Implementation of access control to replace Chubb AFX system at a UK University. Covers 5 buildings, over 300 doors, 23,000 cardholders. Fully integrated with the organisation's Identity Management system. Online and offline locks.

Portfolio Management

Canterbury Christ Church University - June 2013 to July 2013

Developing processes and templates to manage Portfolio, Programmes and Projects for IT at Canterbury Christ Church University..

Smart Card Status Review

University of Bradford - May 2013 to June 2013

Review of the current and planned use of smart cards at Bradford University. Made several recommendations dealing with short term and strategic issues.

XCRI Business Case

Canterbury Christ Church University - February 2012 to March 2012

To understand and have documented the institution’s readiness to undertake the provision of useful course data in XCRI-CAP (standard course advertising) format; To understand and have documented the data flows and business processes that feed the prospectus and web based marketing information, and the work necessary to provide an external feed of useful course date in XCRI-CAP format; To ensure that the Curriculum Management project is aware of the process and system requirements relating to the production and maintenance of course advertising information; To agree and document the business case for providing course data in XCRI-CAP format (assuming a Curriculum Management system is in place); To agree and document a Stage 2 project plan for the provision of useful course data in XCRI-CAP format.

Legal Data Protection

Jerry Niman IT Services Ltd is registered in England and Wales, company registration number 07905347