Case Studies
At the start of the pandemic Rother District Councils IT team had to deploy new platforms, laptops and mobiles. As the team were fully engaged in the project, the IT Manager was conscious of the fact that some other planned work had to be re-prioritised and delayed. “At council we strive to follow best practice and had an intention to develop IT policies that would assist us in this area. However, the workload associated with the technology refresh project meant shelving the policy work, or looking for an alternative way to get it done”
Case Studies
The Head of IT at THCH recognised that IT Policies were key to improving the organisation’s cybersecurity awareness and risk profile. However, with no formally documented and approved policies in place there was some significant work required to address this. Without the right guidance in place there was the potential for a security incident to occur and confidential data to be exposed.
Case Studies
Whilst there was a formal approach to developing or reviewing policies at HES, they had only been updated periodically since their creation. The work was treated and viewed as a task that could be stopped or started when the need arose. This adhoc approach meant it was not uncommon for a staff member to raise a query about a policy which highlighted that the content was out of date or not in line with technological advances.
Case Studies
Not long after BCC initiated a project to work on and standardise their existing suite of IT policies to reflect changes going on within the organisation it became apparent that the exercise would take a long time to conclude due to heavy workloads and the amount of work needed to make it a success.
Case Studies
When the Council recently undertook a project to develop their strategic IT direction it was evident that their existing IT policies were out of date, not comprehensive enough and would not be suitable for use in the future. The project stakeholders were also conscious of the need to verify gaps in the area of information governance and security, with regard to sensitive data for areas such as children’s services, vulnerable adults and debt management.
Case Studies
The key driver for formalising a set of IT policies for WIAL was the constant challenge of managing an ever-changing set of cyber risks. The WIAL Board and Executive team have no tolerance for a cyber breach, so the organisation conducts regular audits and reviews of its cyber controls. Robust IT policies are regarded as a key element in managing cyber risks and extremely valuable in establishing an appropriate control environment.
Case Studies
The ICT team had focussed on implementing good security controls using settings within appliances such as the gateway routers or user logon requirements for software, however, there was not enough policy content underpinning these good operational practices.
Case Studies
As an amalgamated Council creating significant changes to business processes and technologies, it is important MidCoast Council put in place a central set of policies and procedures. MidCoast Council was formed by NSW Government proclamation in May 2016 through the merger of the former Great Lakes, Greater Taree and Gloucester Shire Council and MidCoast Water.
PROTOCOL POLICY SYSTEMS
Fill in the form or call us on (UK) +44 845 241 0099 or (NZ) +64 9 570 2233