Online Identity Assurance Programme Board
Role of the group
1. To oversee the programme governance for the delivery of the Scottish Government Online Identity Assurance Programme Plan, which sets out the actions to deliver the Scottish Government Digital Strategy commitment to work with stakeholders, privacy interests and members of the public to develop a robust, secure and trustworthy mechanism by which an individual member of the public can demonstrate their identity online (to access public sector digital services).
2. The Programme Board will oversee programme governance, including managing risk and accountability, for the delivery of the commitment, aimed at developing a common public sector approach to online identity assurance, as part of digital public services.
3. The Board will oversee the delivery of the following programme phases:
- the close of pre-discovery work, which ran until the end of December 2017
- the delivery of the Discovery Project (from January to May 2018), including service design and technical discovery work
- the planning and delivery of the Alpha and Beta phases of the work (planned from November 2018 onwards)
4. At the end of each phase, the Board will review the outcomes, findings and recommendations that emerge from the work; and agree the business case, plans and resourcing for moving to the next phase of delivery within the overall programme.
5. The Board will oversee the effective programme management of the work, including:
- oversight of the approach to risk management, including approving and keeping under review the risk management plan
- oversee resourcing and financial reporting against the programme budget
- consideration of progress reporting and taking decisions on proposals for change that impact on the expected outcomes and benefits
- approving and keeping under review the governance structure, programme objectives and controls within which the programme can be effectively managed
6. The Board will oversee the approach to stakeholder communications and engagement, including oversight of the work of the national stakeholder group, and the involvement of service providers and technical ‘experts’.
7. The Board will highlight where there are strategic links across the landscape and direction for digital public service delivery and ensure that the programme continues to align to the national policy and legislative framework.
8. The Board will oversee that the overall work is conducted in the spirit and practice of Open Government.
9. The Board will maintain oversight on ethics and values to ensure these matters remain at the forefront within the work.
10. The Board will oversee the privacy impact assessment for the work.
11. Towards the end of the overall programme, the Board will oversee the delivery of a business case, benefits realisation plan and transition plans for implementation of the preferred approach, including arrangements for handover to new governance arrangements if appropriate.
12. The Board has responsibility for closing the programme, including reviewing and approving a final position report, and plans for controlled closure, including evaluation, lessons capture and knowledge transfer.
13. The Board will aim to meet at least quarterly, although may amend its schedule of meetings to fit the needs of the programme.
14. Members may nominate one alternate or delegate to attend those meetings which they are unable to attend.
15. The Programme Board will be supported by the Scottish Government Online Identity Assurance Team. The Team will agree agendas with the Chair in advance of meetings and will aim to circulate the agenda and papers no later than five working days prior to each the meeting.
16. The expectation is that this work will be conducted in the spirit and practice of open government.
17. As part of this process, the Board will consider proactive publication of meeting papers and documentation. This includes proactive sharing of meeting agendas, together with consideration of public sharing for individual substantive papers.
- Colin Cook, Scottish Government, Director Digital (chair)
- Ken MacDonald, Information Commissioner’s Office Scotland (in an advisory capacity); nominated alternate: Maureen Falconer
- Geoff Huggins, NHS Education for Scotland
- Andy McClintock, Social Security Agency
- Greg Colgan, SOLACE (Society of Local Authority Chief Executives and Senior Managers)
- Doreen Grove, Scottish Government Ingage Team
- Ruchir Shah, Scottish Council for Voluntary Organisations (SCVO) (in an advisory capacity)
- Douglas Shirlaw, COSLA
Scottish Government attendees
- Roger Halliday, Strategic Responsible Officer
- Susie Braham, Online Identity Assurance Strategic Lead
- Mike Crockart, Online Identity Assurance Technical Lead
- Gavin Ross, Online Identity Assurance Programme Manager
- Maria Campbell, Online Identity Assurance Communications and Engagement
- Jess Roscoe, Stakeholder Engagement
- Stephen Peacock, Policy Manager
- Ross Clark, Communications and Open Government
- Madeleine Fleming, Digital and Technology Fast Streamer