A&One MIS Workplan Progress Dashboard
For strategic technology, cybersecurity, data protection, infrastructure, and governance initiatives across A&One Precision Engineering.
This dashboard provides a live management view of MIS-led initiatives across governance, cybersecurity, infrastructure, customer assurance, and operational technology planning. It is intended to give leadership a clear overview of work completed, current focus areas, emerging priorities, and execution progress.
Overall Status
In Progress
Key Focus
Shared Drive Governance & Operational Control
Key Accomplishments
Ref to Slide 3
Next Milestone
Advance security control uplift, infrastructure planning, and policy adoption

Last Updated: Mar 2026 — Updated monthly or as major progress occurs.
Executive Summary
Strategic Technology & Governance Overview
MIS Narrative
The current focus is to strengthen the company's technology governance, cybersecurity posture, data protection controls, infrastructure planning, and document management practices.
Meaningful progress has already been made in improving the handling of confidential customer information, updating key policies, supporting shared drive governance, coordinating AMAT remediation work, and strengthening data lifecycle practices for audit readiness.
The current priority is to convert these foundational improvements into stronger operational discipline, staff adoption, and scalable control structures.
Governance Progress
Key policies updated and core control areas are being strengthened.
Cybersecurity Alignment
Remediation activities continue in support of AMAT expectations.
Document Control
Shared drive governance and document lifecycle practices remain a key focus area.
Next Phase
Identity controls, infrastructure upgrades, vendor governance, and policy adoption.
Accomplishments
Key Accomplishments
The following initiatives represent completed or materially advanced deliverables led by the MIS function.
Each item includes a summary, business impact, and defined next step.
AMAT Confidential Information Handling
Implemented OneDrive for handling AMAT confidential information, replacing email-based file transfers.
Impact: Improves control, traceability, and protection of customer-sensitive data.
Next Step: Reinforce correct usage through staff education and adoption monitoring.
IT and Data Protection Policy Updates
Updated Incident Response, Data Classification, and Encryption Management policies.
Impact: Strengthens governance clarity and the policy foundation for secure operations.
Next Step: Translate policy into operational understanding through targeted awareness training.
Shared Drive Document Control Support
Provided structured consultancy on shared drive governance and document control practices.
Impact: Improves file organization, access governance, version control, and obsolete document handling.
Next Step: Continue detailed review of ownership, access rights, naming discipline, and archive logic.
AMAT Remediation Coordination
Served as primary liaison coordinating AMAT cybersecurity and data protection remediation work.
Impact: Creates a clearer response structure and supports coordinated remediation execution.
Next Step: Continue closing identified gaps and ensuring improvements are practical and sustainable.
Data Lifecycle Disposal workflow for ISO Audit
Supported the definition of data lifecycle practices to improve ISO audit readiness.
Impact: Strengthens control over how data is disposed with a workflow
Next Step: Align practices with operational ownership and formal governance processes.
Current Focus
Current Focus Areas
The following workstreams represent the active operational and strategic priorities currently under execution by the MIS function.
Shared Drive Governance & Document Control
Intent: Review and improve folder structure, ownership, version control, access permissions, and obsolete file handling.
Why It Matters: This is the core governance workstream needed to improve control, consistency, and audit readiness.
In Progress
Staff Education for Confidential Information Handling and policy changes
Intent: Educate affected staff on correct OneDrive usage for AMAT confidential information and reduce reliance on email transfer.
Why It Matters: Secure controls are only effective when consistently adopted in daily operations.
In Progress
Cybersecurity and Data Protection Remediation
Intent: Continue remediation work aligned to AMAT expectations with focus on practical risk reduction and control strengthening.
Why It Matters: Supports customer assurance, risk reduction, and long-term compliance maturity.
In Progress
Data Governance and Lifecycle Management
Intent: Further define how information should be classified, retained, archived, and disposed.
Why It Matters: Supports ISO audit readiness, operational consistency, and long-term governance discipline.
In Progress
Cyber Security Insurance
Intent: Review and renew the organization’s cyber security insurance coverage to ensure it remains aligned with the current threat landscape, business operations, customer expectations, and incident response needs. This includes assessing coverage scope, exclusions, claim triggers, and the adequacy of support services provided during a cyber incident.
Why It Matters: To ensure the organization has appropriate financial protection and access to specialist support in the event of a cyber breach. This helps reduce the financial impact of incidents, supports business recovery, and strengthens overall resilience against cyber and data-related risks.
Pending insurer Reply
Roadmap
Upcoming Priorities
The following items represent the next wave of planned initiatives. Each is scoped, sequenced, and aligned to the company's operational and security improvement objectives.
Entra AD Premium & Conditional Access
Assess and implement Entra AD Premium capabilities including Conditional Access to strengthen identity security and support geo-based access protection.
Internet Line Review — Jul 2026
Review current internet performance and business requirements by July 2026. Current observations indicate line speed and stability are sufficient; no immediate need for a dedicated line.
Loyang & Tuas Firewall Upgrade Planning
Plan firewall upgrades at Loyang and Tuas to strengthen security posture, improve resilience, and support future infrastructure requirements.
Azure Gateway Migration Preparation
Prepare for migration from the current Azure Gateway setup to the AZ Series, ensuring continuity, compatibility, and improved long-term reliability.
Vendor & Supplier Cyber Management Program
Review and refine the vendor cybersecurity management program so that policy expectations are clearer, more practical, and realistically implementable for all suppliers.
Formal Cyber Whitelisting Process
Assess whether cyber whitelisting should be formalized into a documented process, including approval workflow, ownership, review frequency, and exception handling.
SharePoint Intranet Restructuring
Review the current SharePoint structure and identify opportunities to redesign the intranet for clearer navigation, ownership, collaboration, and document governance.
Policy Training for Affected HODs
Conduct targeted policy briefings and implementation training for relevant Heads of Department so governance requirements are understood and consistently applied.
Status Snapshot
Management Status Snapshot
A consolidated view of the current state across all MIS-led workstreams, providing leadership with a single-pane status read at a glance.
5
Key Accomplishments
Delivered or materially advanced
5
Active Workstreams
Currently in execution
8
Upcoming Priorities
Planned and scoped
5
Risk Items
Identified and being managed
Current Status Indicators
Overall Status
In Progress — active execution across all workstreams
Strategic Theme
Governance, Cybersecurity, and Operational Control
Main Operational Focus
Shared drive governance and secure information handling
Directional Indicators
Control Maturity Direction
Strengthening foundational controls and embedding adoption
Current Risk Theme
Policies and controls require stronger operational embedding across departments
Immediate Next Step
Progress infrastructure planning, conditional access review, vendor governance refinement, and HOD policy adoption
Progress Indicators
Initiative Progress Tracker
A visual status overview of all active and planned MIS initiatives. Status reflects current execution state.
100%
Policy Updates
Completed
95%
AMAT Confidential File Handling Approach
Implemented to train
30%
Shared Drive Governance Review
In Progress
80%
AMAT Remediation Coordination
In Progress
50%
Data Lifecycle Support for ISO Audit
In Progress
70%
Cyber Security Insurance
In Progress
10%
Entra AD Premium / Conditional Access Review
Planned
10%
Firewall Upgrade Planning
Planned
10%
Azure Gateway Migration Preparation
Planned
10%
Vendor Cyber Management Review
Planned
10%
SharePoint Restructuring Review
Planned
10%
HOD Policy Training
Planned
Risk Register
Key Risks and Gaps
The following risks and control gaps have been identified. Each is actively monitored and managed. The tone here is constructive — these items are raised to ensure leadership visibility and appropriate resourcing.
User Adoption Risk
Staff may continue using older habits such as email-based transfer of confidential information unless secure alternatives are reinforced through communication and consistent practice.
Behavioral
Governance Enforcement Risk
Shared drive improvements may not be fully effective unless ownership, naming standards, access controls, and obsolete file handling are clearly enforced and maintained.
Operational
Policy-to-Practice Gap
Policy updates alone will not deliver results unless departments understand their responsibilities and consistently apply the defined controls in day-to-day operations.
Cultural
Vendor Practicality Gap
Vendor and supplier cyber requirements may remain weak if expectations are not practical, clearly documented, and realistically implementable across the supply base.
Third-Party
Upgrade Sequencing Risk
Infrastructure improvements must be sequenced carefully to strengthen security posture without introducing operational instability during transition periods.
Infrastructure