To receive a presentation of the Corporate Director Transformation and Resources.

The Committee received a presentation of the Interim Head of ICT Services providing an update on the Council’s cyber security systems and procedures. The presentation provided details of the recent high profile attacks reported in the UK, and highlighted the root causes of most cyber-attacks.

The Committee was reminded that there wasn’t a ‘one silver bullet’ approach that could guarantee safety in relation to cyber security, but Members were advised of the ‘Defence in Depth’ strategy adopted by Trafford. This utilised Trafford Council staff as the first line of defence, providing them with a programme of continuous user education. Other techniques involved having clear data and device usage policies, maintaining the enforcement of encryption, and ensuring that all software was current and up to date.

The Interim Head of ICT Services answered several questions from Members in relation to network access from mobile devices, phishing techniques, and penetration testing. Members were advised that no portable programmes could be installed on Trafford Council devices, and work was ongoing on developing a data breach ‘playbook’.

            RESOLVED: That the presentation be noted.

To receive a report of the Corporate Director Transformation and Resources.