Cyber security is important because our devices and the internet are now such an important part of our day to day lives. With instant access to emails, shopping, social media, and online banking, it is more important than ever to make sure we take steps to prevent cyber criminals from accessing personal and commercially sensitive information.
We want to encourage you to take similar steps with your own personal devices and information, so we have developed the following guidance that will work at home as well as in a business environment.
Cyber security at GCC
Cyber security is how individuals and organisations reduce the risk of cyber incident. The main aim of cyber security is to protect the devices we all use (smartphones, laptops, tablets, and computers), the services we access, and our information, both online and at work, from attack, theft, or damage.
At the council, cyber security is about ensuring the personal, sensitive (special category) and commercially sensitive information we hold is protected from unauthorised access.
When systems or services are procured for, or on behalf of the council, the cyber procurement policy governs what security measures and minimum standards should be considered.
As mentioned in the cyber procurement policy, the council expects its suppliers to have adequate cyber security measures in place. Below are several resources which can provide support and guidance to potential suppliers.
- IASME are a locally based consortium, committed to helping businesses improve their cyber security, risk management and good governance through an effective and accessible range of certifications.
- The NCSC provide advice and guidance on a wide array of cyber security related topics which are aimed to support individuals and businesses alike.
- The South West Cyber Resilience Centre covers the policing areas of Gloucestershire, Devon and Cornwall, Avon and Somerset, Dorset and Wiltshire. They provide simple and comprehensive guidance on reducing cyber risks, and support to small businesses and charities who don't have the resources or knowledge to protect themselves from cybercrime.