PRIVACY AND SECURITY IN GOVERNMENT INFORMATION

Developing enterprise is risk assessment
Fram Engineer

Implementing a business continuity plan to ensure IM security
Bev Bourassa

Developing a privacy impact management
Ross Hodgins

Setting up appropriate security controls
Donald Toussaint

Identity and access management in the public sector
Tim Bouma

Outsourcing security
Constantine Karbaliotis

Constantine Karbaliotis is an executive consultant with CGI. Mr. Karbaliotis brings ten years of legal experience as a practicing lawyer together with seven years of technology consulting. He recently acted as privacy manager in a large provincial government undertaking, helping to complete a successful and precedent-setting Privacy Impact Assessment for the Government of Ontario, and has more recently conducted privacy reviews for private sector clients. Mr. Karbaliotis acted as project manager in the Video Remand and Bail Project for Justice Technology Services (Ontario), where he worked for nearly three years within the Justice Sector to successfully implement video conferencing between the courts and correctional facilities for bail and remand hearings. He successfully brought together varied and differing interests to reach a consensus; the project won a Diamond Award at Showcase 2001 for Organizational Transformation. Constantine leads the Security and Privacy Practice for the GTA.

John Boufford is president and principal consultant of e-Privacy Management Systems. He is an experienced freedom of information, privacy and systems professional, who specializes in providing consulting services related to freedom of information and protection of privacy. He has over 10 years experience in applying and interpreting Ontario's Freedom of Information and Protection of Privacy Act (FIPPA) and more recently, the Personal Information Protection and Electronic Documents Act (PIPEDA) and the Privacy Act.

Fram Engineer, with over twenty-five years IT experience in the Federal Government, has developed significant expertise in applying a broad range of IT management practices that include IT Architecture, Strategic Planning, Project and Portfolio Management as well as Risk Management. Mr. Engineer has seen the value IM/IT brings to citizens. Mr. Engineer has recently joined Natural Resources Canada as Director, Enterprise IT Architecture and Security. Amongst other duties. He is responsible for defining the Enterprise IT Architecture, developing and supporting the IT components of the Business Continuity Planning Program, and implementing the "Operational Security Standard: Management of Information Technology Security".

Bev Bourassa is Director, Business Continuity and Security Services, Products & Services, Telecommunications & Informatics Services & Operations, Public Works and Government Services Canada. Ms. Bourassa has had a career of over twenty years in the federal government, specifically in PWGSC. She has performed a broad spectrum of functions including management of system development, computer operations, business continuity and IT security. For the past five years, she has been responsible for operational IT security for PWGSC as well as a business continuity practice that provides services to other departments within the Government of Canada.

Randy Sutton is co-founder and President of Elytra Enterprises Inc., an Ottawa IT Security company in business since January, 2000. Prior to Elytra, Randy specialized in network engineering in the Canadian Forces for ten years followed by a 10-year consulting career in IT Security. Elytra delivers security solutions to a select list of distinguished clients, both national and international.

Ross Hodgins is Director/Coordinator of the Access to Information and Privacy Division in Health Canada. He is responsible for establishing a centre of expertise within the Department and for collaborating with representatives from the health sector to advance the protection of privacy and mitigate privacy risks. In addition, he manages the operational unit that responds to access to information and privacy requests. Prior to working at Health Canada, Ross was a Senior Privacy Advisor at the Treasury Board Secretariat. During his career at the Secretariat he developed several information management, communication, access to information and privacy policies. In the privacy field, he implemented government-wide policies and guidelines related to data matching, control of the Social Insurance Number and privacy impact assessments.

Donald Toussaint is currently the Manager of IT Security Risk Management Services at PWGSC. He is mainly responsible for the implementation of the Departmental IT Security Risk Management Program, which includes system security Certification. Mr. Toussaint has a combined 29 years of experience in the private, military and public sectors. He is well-versed in state-off-the art system engineering and Information Technology Security.

Lou Milrad, recently recognized by Canadian Lawyer magazine as one of Canada's five leading IT practitioners, is a business-oriented lawyer who has devoted more than 30 years of specialization in technology law during which he has advised private and public sector management on the business, policy and legal issues of IT procurements, database ownership and public/private sector It oriented alliances. Mr. Milrad is a partner at Gardiner Roberts LLP, where he chairs the firm's Technology and Intellectual Property Law practice group - he is also General Counsel to several information technology associations. He is the editor of the "Computers and Information Technology" series of forms and precedents published by Canada Law Book. Listed in LEXPERT as a leader in Computer and Information Technology Law.

Tim Bouma is an Executive Consultant with the CGI Business Consulting & Solutions Group. Tim's areas of focus are: identity and access management (IAM), business transformation, knowledge management (KM) and collaboration. Mr. Bouma has a strong background in the software industry, having been employed by two major KM vendors, Open Text and Hummingbird and Advanced Information Technologies, a secure document/ passport issuance vendor. Recently, Mr. Bouma has participated in projects within the Federal Government involving: identity management, service delivery design, business transformation and inter-jurisdictional access control.