Business Processes Re-engineering, Quality and Security Projects Listen to this page using ReadSpeaker

facebook twitter linkedin mail share
Go

Business process re-engineering

The Information & eGovernment Business Processes and Reengineering is one of the most important factors that will contribute to the successful implementation of the Information & eGovernment strategy. It will be achieved by streamlining general procedures and customer needs and establishing a unified restructuring procedure for general services.

To achieve this unified common guideline for operations, the Information & eGovernment Authority (iGA) follows the Business Process Reengineering (BPR); a framework that seeks to evaluate how well government services’ processes and supporting infrastructures accommodate the maturing and ever-changing needs of our citizens and public/private institutions. The BPR study comprises two stages:

  • The (AS IS) stage: a comprehensive study of the current situation including all the details of the operations, procedures, involved parties, inputs, outputs, business structure, and the issues and problems in the process under study. The result is a comprehensive report that gives a full picture of the current situation.
  • The (TO BE) stage: an analysis of the current situation to identify areas with room for improvements. The analysis includes the elimination of the non-adding value steps and reducing the time needed to execute the process more efficiently.

BPR combines a process view and the application of advanced Information Technology (IT) in planned, comprehensive organizational change, efforts and solutions. The process starts by analyzing current processes and defining new ways to help government organizations become more efficient and aligned with international standards.

The framework is used to identify, analyze and redesign the core government services’ processes with the aim of achieving dramatic improvements in critical performance measures such as cost, quality, service and speed. This process does not only transform operations, but also includes understanding of the platform of government services, information technology, and enhancing the electronic culture in order to improve operations.

Since the inception of the system, the Information & eGovernment Authority has re-engineered over 300 processes. iGA has also been successful in creating industry standards under ‘eService Development Life methodology’ to govern the development lifecycle of a government service from inception to production. The methodology includes templates, standards, procedures and guidelines to make service development methodical and structured. Some of the industry standards that are being adopted are: Capability Maturity Model Integration (CMMI), International Organization for Standardization (ISO), Project Management Professional (PMP)  and Information Technology Infrastructure Library (ITIL).

As part of the Procedure Reengineering, Quality Security Projects, formal change procedures were created to ensure that changes and releases to the production environment are introduced in a controlled and coordinated manner.

The system has been developed based on ITIL standards that ensure changes are first recorded and then evaluated, prioritized, planned, communicated, tested, implemented, documented and reviewed in a controlled manner across all environments.

In order to provide efficient and high quality services; the Quality Management Department at iGA focuses on empowering and applying the best standards and principles of international quality, to continuously maintain the quality of projects and services to keep in sync with the changes in government services. This is achieved by implementing the ISO principles and the W3C standards which improve the user experience that will ensure for the long-term growth of websites, in addition to the quality assurance and comprehensive technical testing of all eServices, as well as the empowerment of eContent through all communication channels, especially the eGovernment Portal which interacts with all society segments with high efficiency and quality of service.

 

Implementing ISO 27001 for Information Security Project

ISO 27001

The International Standardisation Organization (ISO) is one of the largest standardisation institutions in the world. It sets detailed requirements for products, operations, services, systems and materials. The ISO 27001 certification is the standard specifically designed for the management of information systems. It specifies a guideline for organizations in the management of sensitive data to maintain the information security.

The eGovernment Authority successfully applied an information security plan in several stages over a period of 18 months, and achieved the internationally recognised ISO 27001 certification in 19 October 2010, awarded by Bureau Veritas.

This achievement makes the eGovernment of the Kingdom of Bahrain, the first GCC eGovernment to receive ISO 27001 certification.

Implementing ISO 9001:2008 for quality and standards management

The ISO 9001:2008 certification means compliance with international indicative standards designed to ensure customer satisfaction and product quality, plus eliminating error in work processes. Achieving the ISO 9001 certification requires adhering to eight principles in quality management and five principles in standardisation of specifications. All these elements must be put into practice and proven to work flawlessly.

The eGovernment Authority worked continuously to implement the international quality standards identified in the eGovernment strategy. The drive behind that was to deliver customer-oriented eServices, offer eServices that seeks to cater to the needs of customers, in addition to increasing their trust and meeting their expectations, as well as the effective design of eServices.

The Security Level Assessment of eGovernment Services & Websites

In this project, all the eGovernment websites are scanned with various security checking tools and programmes. This helps raise the level of information security for these websites, maintain their confidentiality, and protect them from hacking.

The projects aims to manage information security risks to mitigate the impact of security threats identify security vulnerabilities that may pose threats to user information, and fix security breaches to alleviate risks.


Page Last Updated: 22 Apr, 2021