Feeds

UK.gov eavesdroppers frustrated by red tape

Call for middle management cull at GCHQ

Security for virtualized datacentres

Chiefs at GCHQ, the government's electronic eavesdropping station in Cheltenham, have been told to cut bureaucracy, which it's feared may hamper the agency's ability to cope with an increased demand for intelligence and security testing.

"The department has developed a proliferation of strategies, which serves to dilute its priorities and confuse its staff and partners," a Cabinet Office report said today.

GCHQ's more than 5,000 civilian staff are are responsible both for electronic spying - "SIGINT" - and for providing IT security expertise across other branches of UK government - "information assurance".

The report continued: "There is a risk that this lack of strategic coherence will have an impact on the organisation's focus and its ability to prioritise effectively in the face of stretching demands in the future."

The reports authors spoke to junior staff at GCHQ, who said there were too many middle managers slowing decision-making and contributing to overly complex internal procedures. The Cabinet Office told intelligence chiefs they must "weed out" the middle ranks.

The quality of information available to GCHQ's board was also criticised as "variable", particularly relating to its finance. The agency is currently running a major IT procurement project - Mastering the Internet - worth hundreds of millions and designed to increase its surveillance of the web and VoIP.

In its response to the report, GCHQ said it would "tackle robustly" staff concerns about bureaucracy and look at ways to get a better understanding of its finances.

It also promised to improve the diversity of its staff, which the Cabinet Office said was "poor", with the proportion of women lagging behind other departments. ®

Update

GCHQ sent this statement:

GCHQ accepts the Capability Review recommendation and will seek to reduce processes and management layers while retaining the strong grip on finances and legal compliance which the Review recognised.

We will be looking at best practise from both public and private sectors to see what will best support the agility and flexibility we need to continue our delivery of 'World Class Signals Intelligence'.

Secure remote control for conventional and virtual desktops

More from The Register

next story
Found inside ISIS terror chap's laptop: CELINE DION tunes
REPORT: Stash of terrorist material found in Syria Dell box
Show us your Five-Eyes SECRETS says Privacy International
Refusal to disclose GCHQ canteen menus and prices triggers Euro Human Rights Court action
Radio hams can encrypt, in emergencies, says Ofcom
Consultation promises new spectrum and hints at relaxed licence conditions
Heavy VPN users are probably pirates, says BBC
And ISPs should nab 'em on our behalf
Former Bitcoin Foundation chair pleads guilty to money-laundering charge
Charlie Shrem plea deal could still get him five YEARS in chokey
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Top 5 reasons to deploy VMware with Tegile
Data demand and the rise of virtualization is challenging IT teams to deliver storage performance, scalability and capacity that can keep up, while maximizing efficiency.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.