Cyber

About the Local Digital Cyber team

The Local Digital Declaration includes a commitment to the continuous improvement of cyber security practice, to support the security, resilience and integrity of our digital services and systems.

As part of this, the Local Digital Cyber team is conducting two projects to support local authorities to reduce the incidence and impact of cyber attacks, and support sustainable cyber health.

The Autumn 2021 Budget announced additional funding for local government cyber and digital reform. We’re excited to be working with our partners to shape this expansion of our work, so read this blog post to find out more and watch this space for future news.

Recent projects

Cyber Health Alpha

In 2021, the Cyber Health team completed an alpha project to explore the development of a tool and framework to support local authorities to achieve a recommended level of cyber health. This will help local authorities to apply cyber security standards and guidance, and assess their progress against a baseline. Read more about the Cyber Health project in this blog post.

Cyber Support

In 2021, the Cyber Support team provided expertise and support to identify issues and gaps in local authority cyber security. The team provided guidance, tools and good practice, and helped councils to develop a roadmap for cyber enhancement. This will increase their resilience against ransomware attacks. It will also help cyber security professionals within local authorities to communicate with, and get future budget and priority, from senior leaders. Read more about the Cyber Support project in this blog post.

You can also read past issues of our Cyber Sprint Notes to learn more about the projects.

Past projects

The Cyber team wrapped up a cyber security pre-discovery phase in May 2020 and completed a more in-depth discovery phase in July 2020.

Our main findings from the discovery were that:

  • there are many cyber standards, but no clear baseline
  • an effective cyber baseline must encompass culture, leadership and ‘cyber first’ processes
  • leadership support is vital to embed standards and best practices across the organisation
  • leaders need to understand cyber risk to inform their decisions
  • legacy technology is a critical blocker to achieving cyber health
  • there is an opportunity for councils to collaborate in order to achieve greater security

You can read more about the discovery and pre-discovery work on the DLUHC Digital blog. You can also read the pre-discovery report (PDF).