- Om Säkerhetspolisen
Anders Thornberg, Head of the Swedish Security Service, participated in a press conference on 24 July 2017 called by Prime Minister Stefan Löfven, in order to give an account of the Service’s protective security audit of the Transport Agency. The audit revealed shortcomings in the Transport Agency’s procurement procedures for the outsourcing of its IT operations.
The Security Service provides oversight and advice to civilian agencies, based on the Swedish Protective Security Act and Protective Security Ordinance. However, each agency is itself responsible for ensuring that protective measures are in place.
“We have an important role as an oversight body for public agencies of critical importance to our country. We examine their operations and give them advice and support. In this capacity, we advised the Transport Agency to increase their protective security, as they were about to outsource some of their IT operations,” said Anders Thornberg.
As a result of its audit, the Service found that the Transport Agency had not fulfilled its protective security obligations, as it had not carried out and documented the required security analyses and security measures and had intentionally disregarded protective security legislation.
“Inadequately protected information must be regarded as having possibly fallen into the wrong hands. Although this has not necessarily happened, each agency concerned has to assume that it could have and take appropriate measures.”
What has happened is very serious but any possible effects on our Service can be handled. We will continue discussing this matter with the Transport Agency and supporting them in their work”, said Anders Thornberg.