SOLACE

Cyber security must be managed and understood at all levels

It is not a question of if we will be threatened by a cyber attack, but when, writes Jo Miller.

By Jo Miller | 24 May 2017

As NHS systems were attacked this month, I could understand what our health colleagues were going through.

In 2015, Doncaster MBC was attacked by ransomware. The immediate priority was to invoke our cyber security incident response plan, meaning we shut down our entire system within 15 minutes. Due to our highly skilled response team quickly implementing our plans, we had fully recovered that evening, without losing any data.

Threats like these happen daily and they are becoming more sophisticated. Every business and organisation must be prepared and have the right systems and monitoring in place. Acting quickly is vital to minimise impact.

For councils and public sector organisations it is not a question of if we will be threatened by a cyber attack, but when. IT controls can help manage threats but we need to be vigilant and trained in how to stop this spreading. Cyber crime is here to stay – it generates vast sums of money for criminals with little risk or outlay.

Frequent emails go out to my staff to remind them not to open attachments if they don't know the source and all staff are encouraged to complete training modules on cyber security.

That afternoon, back in 2015, was testing in a range of ways. We were unable to use IT systems, emails and telephone systems. Communicating during an emergency is key, but how do you communicate when we have become so reliant on email, texts and telephones?

Notice boards were put up on all floors to provide updates. Staff cleaned out their lockers, got together, discussed current work and shared ideas.

Technical controls reduce risks but will never give us 100% security, and it's not just an IT issue. People are our weakest link and cyber criminals research social media to mine personal information.

Cyber crime is a corporate risk to be managed and understood at all levels, and that starts at the top.

People and data are our greatest enablers and our greatest assets. We must protect them both in terms of investment. None of this back office/front office distinction – they are different sides of the same coin.

We managed our attack well but we are not complacent. It may happen again and we are ready for it.

Jo Miller is chief executive of Doncaster MBC

Tags

Popular articles by Jo Miller

  1. Good luck Liverpool
  2. Choose to challenge on International Women's Day
  3. Let's work together to solve the housing crisis
  4. More hard graft ahead next year

Related Articles

SOLACE

Housing: The new consumer gradings have been a challenge

By Julian Paine | 28 April 2025

Julian Paine says that although housing is getting more airtime, councils are still trying to find their way with consumer regulations.

SOLACE

Keeping a neighbourly eye on care

By Ann McGauran | 25 April 2025

The Government is committed to creating a neighbourhood health service, but some local places have worked on this agenda for years. What are the lessons so f...

SOLACE

Geography of power: Relocating Whitehall to the regions

By David Werran | 24 April 2025

The political and economic case for an exodus from Whitehall to regional hubs is compelling and could become the catalyst for meaningful civil service reform...

SOLACE

Reforming and transforming

By Heather Jameson | 24 April 2025

As councils rush towards reorganisation, what are the lessons from past redesigns? Heather Jameson reports from a webinar hosted by Penna, CIPFA and The MJ –...

Popular articles by Jo Miller

  1. Good luck Liverpool
  2. Choose to challenge on International Women's Day
  3. Let's work together to solve the housing crisis
  4. More hard graft ahead next year
footer-logo

©2024 Hemming Group Limited. Registered in England and Wales. Registered No: 490200. VAT number GB342 023 408