Information assurance handbook

Published: 03 June 2017
Freedom of information class: How we manage our resources

Find out more about information assurance.


RoS information assurance handbook - (590.6 KB)


The HMG security policy framework (SPF) states that organisations should appoint and train information asset owners (IAO) for each of their information assets. The role was created following the government’s data handling review in 2008. An IAO is appointed by, and reports to, the senior information risk owner (SIRO). Their role is to protect and manage information held in HMG, and ensure that its value to the organisation is fully exploited.

This handbook will help you understand your role and responsibilities within Registers of Scotland (RoS), the chain of governance (including where you fit in), and the skills you need to be an effective IAO.