A very interesting question as I recently launched our Council's first internal blog in July to keep staff up-to-date on what's going on with information security and data protection issues at the Council and beyond. This coincided with rolling out awareness sessions to all staff and promoting the blog as one of the useful references for them.
I tend to post in an informal chatty style highlighting the latest ICO fines, things in the press, examples of good / bad practice, etc. I'm still trying to find the balance between updating it frequently enough so it doesn't go stale but not so frequently that there is far too much information for people to dip into since their last visit.
So far the most popular entry is one featuring a short video illustrating tailgating (using staff as actors) had most views so I intend to do some more videos.
I had hoped that good use would be made of the comments feature to generate some discussion on the topics posted but sadly there hasn't been any real engagement there yet. I was just talking with our SIRO last week about trying to increase that by them starting off the first comment to open up discussion - we'll see how that idea pans out. I've also invited a member of staff to do a guest entry highlighting what they've changed as a result of their infosec & dpa awareness sessions - hoping that may generate a bit more interest than it always being me!
The other type of entry that did generate interest was a competition using comments for their entries. Certainly raised awareness of it to kick things off but it's maintaining interest and generating discussion in that form I'm struggling with.
In terms of the Q&A, I have one on the intranet (as part of an Information Management section nicknamed KISSnet) that I update but I do sometimes think that they may be better answered on the blog... I may try one out and see if I get a response to it that way.
As a general rule I like to be proactive - but it does take time and, initially at least, isn't very rewarding without the comments for feedback! On the up side I know they are being read from stats and I get some e-mails about some entries :)
If you have any other queries let me know.
The ITIL Imp
All archives of messages are stored permanently and are
available to the world wide web community at large at
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving messages please send to the list owner
[log in to unmask]
Full help Desk - please email [log in to unmask] describing your needs
To receive these emails in HTML format send the command:
SET data-protection HTML to [log in to unmask]
(all commands go to [log in to unmask] not the list please)