Financial Crime World

Tonga’s Government Agencies to Benefit from Consolidated Data Center, Cloud Computing Resources

The government of Tonga has announced plans to consolidate its data center environment, providing all government agencies with cloud computing resources and interconnection or interoperability tools. This move aims to ensure disaster recovery and continuity of operations for Ministry Departments and Agencies (MDAs), once the backup data center environment is made available.

Transitioning to Cloud Computing

By transitioning information systems of MDAs into a cloud computing environment, the government hopes to achieve interoperability, portability, and better security to protect the confidentiality, integrity, and availability of Tonga’s data resources. This will enable agencies to access critical services and applications remotely, ensuring business continuity and improved responsiveness.

Cybersecurity Measures

The government has outlined a comprehensive cybersecurity strategy, focusing on risk management, threat preparedness, and incident response. To achieve this, the following actions have been identified:

  • Develop and adopt a Cybersecurity Manual for Tongan government agencies.
  • Carry out the upgrade of Civil Registration and National Identity systems.
  • Transition all MDAs to the Secure Government Network (SGN).
  • Implement the Data Center Consolidation Program and Tongan Government Cloud Computing Transition.

Risk Management

In addition, the government has recognized the importance of risk management in preventing and responding to cybersecurity incidents. To achieve this, proactive measures aimed at preventing incidents will be implemented, including:

  • Threat intelligence tools
  • Incident management systems
  • Cyber security training

Reactive measures to control and reduce damage caused by incidents will also be put in place.

Threat Preparedness and Incident Response

The government has emphasized the need for MDAs to have a dedicated policy for incident management and process defined. Defining the incident management process is crucial to avoid confusion over responsibilities and consequences. All MDAs must have a full overview of their cybersecurity incidents, and an incident reporting requirement will be implemented to provide a clear picture of the threats and vulnerabilities faced by each agency.

Conclusion

The consolidation of Tonga’s data center environment and transition to cloud computing will enable government agencies to access critical services and applications remotely, ensuring business continuity and improved responsiveness. The comprehensive cybersecurity strategy outlined above aims to protect the confidentiality, integrity, and availability of Tonga’s data resources and ensure disaster recovery and continuity of operations for MDAs.

Actions

  • Identify threats and vulnerabilities of public sector information systems and critical IT infrastructure.
  • Perform regular risk assessments in public organisations and critical private enterprises.
  • Prepare risk mitigation and disaster recovery plans.