Asked by: Matt Rodda (Labour - Reading East)
Question to the Northern Ireland Office:
To ask the Secretary of State for Northern Ireland, how much their Department spent on (a) current and (b) legacy IT infrastructure (i) in total and (ii) purchased in 2013 or earlier in each of the last three years.
Answered by Steve Baker - Minister of State (Northern Ireland Office)
On current IT infrastructure, the Northern Ireland Office (NIO) spent a total of £1.358m over the last three years. This can be broken down as £475k in financial year 23/24, £428k in financial year 22/23, and £455k in financial year 21/22. The NIO has no legacy IT infrastructure and no IT infrastructure purchased in 2013 or earlier.
Asked by: Matt Rodda (Labour - Reading East)
Question
To ask the hon. Member for Broxbourne, representing the House of Commons Commission, with reference to the guidance by the Central Digital and Data Office entitled Guidance on the Legacy IT Risk Assessment Framework, published on 29 September 2023, how many red-rated IT systems are used by the House of Commons.
Answered by Charles Walker
Parliament does not rate its IT systems according to the Legacy IT Risk Assessment Framework provided by the Central Digital and Data Office.
Priority One of Parliament’s Digital Strategy 2022–25 is ensuring that its digital services are flexible, secure and resilient, and Priority 3 of the Strategy is to make digital more sustainable and scalable by updating our operating models and identifying opportunities to improve ways of working. One of the ways Parliament supports these priorities is by managing its legacy technology burden and risk.
Asked by: Matt Rodda (Labour - Reading East)
Question
To ask the hon. Member for Broxbourne, representing the House of Commons Commission, how much the House of Commons spends on (a) total IT infrastructure, (b) IT infrastructure that was first purchased in 2013 or earlier and (c) legacy IT infrastructure each year.
Answered by Charles Walker
The amount the House of Commons spent on physical, virtual and cloud IT infrastructure in financial year 2022/23 was £8,985,950.
As the House of Commons does not record cost data based on legacy or age status, it isn’t possible to provide answers to parts (b) and (c) of the question.
Asked by: Matt Rodda (Labour - Reading East)
Question to the Department for Digital, Culture, Media & Sport:
To ask the Secretary of State for Culture, Media and Sport, when she plans to provide a substantive response to Question 2996 on Department for Culture, Media and Sport: ICT, which was due for answer by 23 November 2023.
Answered by John Whittingdale
We have now responded substantively to Question 2996.
Asked by: Matt Rodda (Labour - Reading East)
Question to the HM Treasury:
To ask the Chancellor of the Exchequer, with reference to the guidance by the Central Digital and Data Office entitled Guidance on the Legacy IT Risk Assessment Framework, published on 29 September 2023, how many red-rated IT systems are used by HMRC as of 6 December 2023.
Answered by Nigel Huddleston - Financial Secretary (HM Treasury)
The information held about Red Rated Systems is sensitive and can not be disclosed due to security considerations.
Asked by: Matt Rodda (Labour - Reading East)
Question to the Home Office:
To ask the Secretary of State for the Home Department, pursuant to the Answer of 29 November 2023 to Question 3660 on Home Office: ICT, if he will publish details of the four red-rated legacy systems.
Answered by Chris Philp - Minister of State (Home Office)
The information held about Red Rated Systems is sensitive for both commercial and security reasons.
Each legacy system in the department is closely monitored and has a remediation programme in place to mitigate or completely remove the legacy elements.
Asked by: Matt Rodda (Labour - Reading East)
Question to the Department for Digital, Culture, Media & Sport:
To ask the Secretary of State for Culture, Media and Sport, with reference to the Guidance on the Legacy IT Risk Assessment Framework, published by the Central Digital and Data Office on 29 September 2023, how many red-rated IT systems are used by arms length bodies for which her Department has responsibility.
Answered by John Whittingdale
The information held about Red Rated Systems is sensitive as it highlights potential security weaknesses within a department's IT estate.
Asked by: Matt Rodda (Labour - Reading East)
Question to the Ministry of Justice:
To ask the Secretary of State for Justice, with reference to the Central Digital & Data Office's guidance entitled, Guidance on the Legacy IT Risk Assessment Framework, published 29 September 2023, how many red-rated IT systems are used by HM Courts and Tribunals Service as of 6 December 2023.
Answered by Mike Freer - Parliamentary Under-Secretary (Ministry of Justice)
Based on the latest assessment using Central Digital & Data Office’s guidance, as at October 2022 HMCTS had 9 red-rated IT systems.
Asked by: Matt Rodda (Labour - Reading East)
Question to the Ministry of Justice:
To ask the Secretary of State for Justice, pursuant to the Answer of 4 December 2023 to Question 3664 on Ministry of Justice: ICT, if he will publish details of the red-rated IT systems referenced in the answer.
Answered by Mike Freer - Parliamentary Under-Secretary (Ministry of Justice)
The details on the red-rated IT systems will not be published due to security reasons. This is because the information held about Red Rated Systems is sensitive as it highlights potential security weaknesses within a department's IT estate.
As such, we will be withholding the information.
Asked by: Matt Rodda (Labour - Reading East)
Question to the Department for Digital, Culture, Media & Sport:
To ask the Secretary of State for Culture, Media and Sport, with reference to the Central Digital & Data Office's guidance entitled, Guidance on the Legacy IT Risk Assessment Framework, published 29 September 2023, how many red-rated IT systems are used by her Department as of 21 November 2023.
Answered by John Whittingdale
The annual cost (Financial Year) to the Department for Culture, Media & Sport (DCMS) on IT Infrastructure are:
IT Infrastructure (FY 2022-23) - £1,838,272
IT Infrastructure - pre 2013 - £nil*
Legacy IT Infrastructure - £nil**
The DCMS Technology service is 100% cloud based, adopting a consumption based delivery model, consuming predominantly Software as a Service (SaaS) & Platform as a service (PaaS), services.
The DCMS Technology Service was established in 2021, there is no legacy infrastructure, all services have been transformed as part of the initial transformation programme undertaken in 2021.
As of 21 November 2023, DCMS has zero (0) red-rated IT systems.
* DCMS Technology Service was established in 2021, prior to the service existing, IT services were provided through a Shared IT service model, delivered through the Cabinet Office.
** The DCMS Technology Service is relatively new, there is no legacy infrastructure due to the service model being 100% cloud based, adopting a Software as a Service (SaaS) based consume delivery model.