FOI Disclosure Log

Customer Request Details

07 January 2021

Council name 

Region - please select from the following: South East, London, North West, East of England, West Midlands, South West, Yorkshire and the Humber, East Midlands, North East, Wales, Scotland, Northern Ireland

 

The total number of full-time and part-time employees employed by your organisation (as of 1st January 2021 or latest figures available)

 

The total number of full-time and part-time employees employed by your organisation with professional data security / cybersecurity qualifications (as of 1st January 2021 or latest figures available) - Common qualifications may include any cyber or IT security related qualifications such as CISSP, SSCP, CSA, CEH, CISA, CISM, Security+

 

The total number of full-time and part-time employees employed by your organisation who have completed cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available)

 

How much money (in pounds sterling) has been spent on cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available) this may include GDPR-related training

 

How many data breaches did your organisation report to the ICO between 1st January 2019 and 1st January 2020

 

How many data breaches did your organisation report to the ICO between 1st January 2020 and 1st January 2021

 

Was your organisation victim to a successful ransomware attack between 1st January 2020 and 31st December 2020? As for the definition of a “successful ransomware attack”, please include any incident in which an attacker requesting a ransom/payment managed to successfully encrypt, steal or leak any data/systems/assets that your organisation processes/holds.

 

If you answered yes to the previous question, did your organisation agree to pay a ransom? Yes/No

 

Did your organisation suffer a cyber security incident between 1st January 2020 and 31st December 2020 which resulted in disruption to the council’s services? This refers to any cyber incident that forced usual services to go offline or become unavailable. Yes/No

 

 

 

 

 

 

 

 

 

 

 

 



East Herts Council Response

12 January 2021

Freedom of Information Act –  Information Request –

The information we hold is as follows see below for fields marked with a *

Council name 

 

Region - please select from the following: South East, London, North West, East of England, West Midlands, South West, Yorkshire and the Humber, East Midlands, North East, Wales, Scotland, Northern Ireland

 

The total number of full-time and part-time employees employed by your organisation (as of 1st January 2021 or latest figures available)

 

The total number of full-time and part-time employees employed by your organisation with professional data security / cybersecurity qualifications (as of 1st January 2021 or latest figures available) - Common qualifications may include any cyber or IT security related qualifications such as CISSP, SSCP, CSA, CEH, CISA, CISM, Security+

 

The total number of full-time and part-time employees employed by your organisation who have completed cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available)

 

How much money (in pounds sterling) has been spent on cyber security training between 1stJanuary 2020 and 31stDecember 2020 (or latest annual figures available) this may include GDPR-related training

 

How many data breaches did your organisation report to the ICO between 1st January 2019 and 1st January 2020

 

How many data breaches did your organisation report to the ICO between 1st January 2020 and 1st January 2021

 

Was your organisation victim to a successful ransomware attack between 1st January 2020 and 31st December 2020? As for the definition of a “successful ransomware attack”, please include any incident in which an attacker requesting a ransom/payment managed to successfully encrypt, steal or leak any data/systems/assets that your organisation processes/holds.

 

If you answered yes to the previous question, did your organisation agree to pay a ransom? Yes/No

 

Did your organisation suffer a cyber security incident between 1st January 2020 and 31st December 2020 which resulted in disruption to the council’s services? This refers to any cyber incident that forced usual services to go offline or become unavailable. Yes/No

 

Eastherts

Council

East of England

335

None by Eastherts

All staff are required to take Data Protection training on a yearly basis. Dedicated cyber security training would come under SBC remit *

£1,178 on GDPR training for all staff as part of the e-learning annual mandatory training

Zero

Zero

*

*

*


 

*****

Further to your Freedom of Information request regarding: Information Technology

This is a function carried out by Stevenage Borough Council as part of a shared services agreement therefore your request should be sent to [email protected]

 Further contact details are: https://eforms.stevenage.gov.uk/ufs/ufsmain?formid=FREEDOM_OF_INFO_REQUEST

Or in writing to:

Legal Services
Stevenage Borough Council,
Daneshill House
Danestrete
Stevenage
Herts
SG1 1HN

If you have any queries or complaint about the processing of your request please do not hesitate to contact me.

Alternatively for more information on the Freedom of Information Act contact the Information Commissioner at:

Information Commissioners Office
Wycliffe House
Water Lane
Wilmslow
Cheshire

Telephone 0303 123 1113 

https://ico.org.uk/

It is important that you include the above FOI reference number on all correspondence related to this request.

I apologise that your request cannot be met and should you have any further queries or information needs in the future then please contact me.

 

It is important that you include the above FOI reference number on all correspondence related to this request.

Thank you for your request.