Anti-Virus Solutions (4616_15)

Request

The names of the anti-virus and anti-malware solutions you use.
The number of machines on which these solutions are installed
The pay scales of the employees responsible for maintaining these solutions
The number of malware alerts that your AV solutions detected in the past twelve months
The number of infections that have occurred in the last twelve months
The number and type of unauthorised accesses within our networks
The number of these reported to the Information Commissioners Office
The following policies:

o Acceptable Use
o Clear Desk
o Cryptography
o Digital Forensic Readiness
o Mobile Computing
o Password Management
o Remote Access

Response

We can confirm that some relevant information is held by West Midlands Police. However, while the some of the information is below I am afraid that I am not required by statute to release all of the information requested. This letter serves as a Refusal Notice under Section 17 of the Freedom of Information Act 2000 (the Act) for the information that has not been released. We are withholding that information since we consider that the exemption outlined below applies to it.

The names of the anti-virus and anti-malware solutions you use.

Exempt via section 31(1) – see PIT in covering letter

The number of machines on which these solutions are installed

9669 devices, a mix of desktops, laptops and servers.

The pay scales of the employees responsible for maintaining these solutions

The responsibility is shared amongst a team of people (for resilience) they are paid between £27,426 to £45960

The number of malware alerts that your AV solutions detected in the past twelve months
The number of infections that have occurred in the last twelve months
The number and type of unauthorised accesses within our networks
The number of these reported to the Information Commissioners Office

Exempt via section 31(1) – see PIT in covering letter

The following policies:

Acceptable Use
Clear Desk
Cryptography
Digital Forensic Readiness
Mobile Computing
Password Management
Remote Access

Attached separately

REASONS FOR DECISION

The Freedom of Information Act places two responsibilities on public authorities, the first of which is to confirm what information it holds and secondly to then disclose that information, unless exemptions apply.

In this case the information is exempt by virtue of the following exemptions

Section 31 (1) (a) (b) (Law enforcement)

These exemptions and explanatory notes are shown here:

http://www.west-midlands.police.uk/docs/advice-centre/foi/exemptions.pdf

In line with the above, I am required to complete a Prejudice Test/Public Interest Test (PIT) on disclosure. Please find this PIT attached.

Attachments

~Remote_Access~

Password Management Policy V0 1 FORMATTED (2)~

Digital_Forensic_Readiness

~Mobile_Computing

~Clear_Desk

~Cryptographic_Policy

4616_PIT

~Acceptable_Use_Policy

Bookmark the permalink.

Comments are closed