FOI Disclosure Log
Customer Request Details
07 January 2021
Council name
Region - please select from the following: South East, London, North West, East of England, West Midlands, South West, Yorkshire and the Humber, East Midlands, North East, Wales, Scotland, Northern Ireland
The total number of full-time and part-time employees employed by your organisation (as of 1st January 2021 or latest figures available)
The total number of full-time and part-time employees employed by your organisation with professional data security / cybersecurity qualifications (as of 1st January 2021 or latest figures available) - Common qualifications may include any cyber or IT security related qualifications such as CISSP, SSCP, CSA, CEH, CISA, CISM, Security+
The total number of full-time and part-time employees employed by your organisation who have completed cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available)
How much money (in pounds sterling) has been spent on cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available) this may include GDPR-related training
How many data breaches did your organisation report to the ICO between 1st January 2019 and 1st January 2020
How many data breaches did your organisation report to the ICO between 1st January 2020 and 1st January 2021
Was your organisation victim to a successful ransomware attack between 1st January 2020 and 31st December 2020? As for the definition of a “successful ransomware attack”, please include any incident in which an attacker requesting a ransom/payment managed to successfully encrypt, steal or leak any data/systems/assets that your organisation processes/holds.
If you answered yes to the previous question, did your organisation agree to pay a ransom? Yes/No
Did your organisation suffer a cyber security incident between 1st January 2020 and 31st December 2020 which resulted in disruption to the council’s services? This refers to any cyber incident that forced usual services to go offline or become unavailable. Yes/No
East Herts Council Response
12 January 2021
Freedom of Information Act – Information Request –
The information we hold is as follows see below for fields marked with a *
Council name
Region - please select from the following: South East, London, North West, East of England, West Midlands, South West, Yorkshire and the Humber, East Midlands, North East, Wales, Scotland, Northern Ireland
The total number of full-time and part-time employees employed by your organisation (as of 1st January 2021 or latest figures available)
The total number of full-time and part-time employees employed by your organisation with professional data security / cybersecurity qualifications (as of 1st January 2021 or latest figures available) - Common qualifications may include any cyber or IT security related qualifications such as CISSP, SSCP, CSA, CEH, CISA, CISM, Security+
The total number of full-time and part-time employees employed by your organisation who have completed cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available)
How much money (in pounds sterling) has been spent on cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available) this may include GDPR-related training
How many data breaches did your organisation report to the ICO between 1st January 2019 and 1st January 2020
How many data breaches did your organisation report to the ICO between 1st January 2020 and 1st January 2021
Was your organisation victim to a successful ransomware attack between 1st January 2020 and 31st December 2020? As for the definition of a “successful ransomware attack”, please include any incident in which an attacker requesting a ransom/payment managed to successfully encrypt, steal or leak any data/systems/assets that your organisation processes/holds.
If you answered yes to the previous question, did your organisation agree to pay a ransom? Yes/No
Did your organisation suffer a cyber security incident between 1st January 2020 and 31st December 2020 which resulted in disruption to the council’s services? This refers to any cyber incident that forced usual services to go offline or become unavailable. Yes/No
Eastherts
Council
East of England
335
None by Eastherts
All staff are required to take Data Protection training on a yearly basis. Dedicated cyber security training would come under SBC remit *
£1,178 on GDPR training for all staff as part of the e-learning annual mandatory training
Zero
Zero
*
*
*
*****
Further to your Freedom of Information request regarding: Information Technology
This is a function carried out by Stevenage Borough Council as part of a shared services agreement therefore your request should be sent to [email protected]
Further contact details are: https://eforms.stevenage.gov.uk/ufs/ufsmain?formid=FREEDOM_OF_INFO_REQUEST
Or in writing to:
Legal Services
Stevenage Borough Council,
Daneshill House
Danestrete
Stevenage
Herts
SG1 1HN
If you have any queries or complaint about the processing of your request please do not hesitate to contact me.
Alternatively for more information on the Freedom of Information Act contact the Information Commissioner at:
Information Commissioners Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
Telephone 0303 123 1113
https://ico.org.uk/
It is important that you include the above FOI reference number on all correspondence related to this request.
I apologise that your request cannot be met and should you have any further queries or information needs in the future then please contact me.
It is important that you include the above FOI reference number on all correspondence related to this request.
Thank you for your request.