PROTOCOL POLICY SYSTEMS

Protocol Policy Newletters

February 12, 2026

Nothing Stands Still: Navigating the CAF 4.0 Transition for Local Government

The Ministry of Housing, Communities and Local Government (MHCLG) recently announced that for 2026 they will be focussing on evolving the Cyber Assessment Framework (CAF) for Local Government user journey, making it easier and quicker to complete CAF assessments.

January 26, 2026

IT Policy as a Strategic Enabler: Lifecycle Management, Accountability, and Future-Proofing

The line between IT and cyber resilience and corporate risk is rapidly disappearing in the local government sector. Recent UK government publications, including the Cyber Governance Code of Practice, developed by DSIT, and the National Cyber Security Centre (NCSC), echoed the core message that cyber security and IT policy have shifted...

January 22, 2026

Modern Data Governance Practices For The AI Era

Data is a core operational asset, supporting digital services, analytics, and increasingly AI-driven decision-making. When data is poorly governed it introduces material risks across security, system integrity, regulatory exposure, and organisational trust. For IT and governance professionals, weak data governance directly increases legal, operational, and reputational risk.

January 19, 2026

The Cost of Fragmented IT Policies: Operational Inefficiency, Cyber Exposure and Audit Burden

In the public sector, IT policy fragmentation is often dismissed as an administrative inconvenience. However, for Combined Authorities and Local Government, the reality is far more severe. The UK latest Government’s Cyber action plan highlights fragmentation as a key operational risk, creating systemic gaps that lead to failed audits...

January 12, 2026

From IT Policy Documents to Defensible Controls: Tackling Policy Sprawl and Strengthening Assurance

A common misconception in IT governance is that a large volume of IT policy documents equates to strong security and compliance. In practice, quantity is not quality. As policy portfolios grow without structure or ownership, they often introduce ambiguity rather than assurance.

January 05, 2026

Hidden Risks and Policy Sprawl: How Outdated IT Policies Undermine Assurance and Cyber Resilience in Combined Authorities

Combined Authorities and local councils are facing cyber risks that are increasing in frequency, sophistication, and impact. As digital services expand and data sharing becomes more complex, the resilience of public-sector organisations is being tested in new and increasingly visible ways.

December 10, 2025

A Year in Review: Cyber Security 2025

As we conclude the year, cyber security issues continue to keep many people awake at night. With limited resources and suitably qualified personnel available to combat and address these issues we see don’t see next year as being too different unfortunately. AI was the hot topic of 2025 and it’s likely to continue as such during 2026.

November 13, 2025

Moving Beyond Manual IT Policy Creation and Management

For IT and Cybersecurity leaders, policy creation and management is not just about documentation, it’s about governance, control, and resilience. IT policies define how technology and data is to be secured, accessed, and managed across the enterprise. They underpin cyber security, business continuity and regulatory compliance yet, in many organisations, IT policies are still drafted, edited and managed...

1 (current)
2
3
4
5
6
7
8
9
10

PROTOCOL POLICY SYSTEMS

Contact Us Today

Fill in the form or call us on (UK) +44 845 241 0099 or (NZ) +64 9 570 2233