Agenda item
Information Governance and Cyber Security
The Committee will receive a presentation from Sara Hydon (Head of Design and Compliance) and Simon Marshall (Governance and Compliance Manager).
Minutes:
The Committee received a presentation from Sara Hydon (Head of Service Design and Compliance) on the Council’s recent Local Government Association’s 360° Peer Review of Cyber Security.
The Committee noted that the objectives of the LGA Cyber 360° Peer Review were to:
· To support reduction of cyber risks
· To offer perspective on cyber culture
· To build on existing cyber capabilities
· To improve the understanding of cyber security principles
Cyber experts had focused upon governance, risk management, asset management, supply chain, etc. A leadership ‘check and challenge’ process had been undertaken to understand the various capabilities of the Council. A detailed report is to be received on the findings which highlighted a number of strengths and indeed opportunities for the Council to consider.
The findings of the review noted that:
· The Council had a Cyber Security Strategy in place, however they would encourage managers to get involved in its further development
· IT are well informed and respected, however there needed to be further challenge from non-IT leaders
· There were strong links between senior and operational levels via the SIRO
· Security awareness of Members was increasing
· There was a detailed cyber security risk register, however this needed to have senior visibility
· Managers need to understand their critical data assets
· There was a need for Leaders to develop their knowledge of cyber and
responsibility for risk
· The Council’s Learning and development around cyber security was seen as a positive
· Business continuity plans across the Council should be tested in preparedness for a cyber attack regularly
RESOLVED that the presentation be noted and Sara Hydon be thanked for attending the meeting.
Supporting documents:
PDF 249 KB