|
Join us on Twitter: For the latest news and events, share your best practice, and join the conversation on cyber, digital and technology @LGAcyberdigital
Dear colleague
Welcome to the tenth edition of the LGA’s Cyber, Digital and Technology Bulletin.
We are counting down the days until the LGA’s Annual Conference 2023, taking place in Bournemouth between 4 to 6 July. Our session ‘Cyber: The Threat to Your Council’ features on the main conference programme, and we’re hosting an Innovation Zone event on the use of the Local Government Cyber Assessment Framework and LGA’s Cyber 360 as tools to build secure innovative cultures in councils. We will also welcome five cyber, digital, and technology-focused sessions to the Innovation Zone across the week. The full programme is being updated daily, and we hope to see you there.
Earlier this month, we hosted two roundtables discussing the fast-moving AI landscape and the Government’s proposals for a pro-innovation approach to AI regulation. We would like to thank all colleagues who attended these sessions. The discussions have informed our consultation response that we submitted in collaboration with Socitm and Solace.
We would also like to thank all the councils that took part in our cyber insurance survey which we ran in late May and early June. We heard from 40 per cent of councils, and the findings from the survey will be published this summer.
Last week, the LGA officially launched its sector support offer for 2022/23, and our Cyber, Digital and Technology Programme continues to play a crucial part. Special thanks to members of our Transformation Network, who contributed to the development of the LGA’s new Transformation Programme.
This bulletin includes an overview of the latest guidance from NCSC, an update from Local Digital and the Department for Science, Innovation and Technology, as well as a number of developments here at the LGA.
As always, please remain alert, and reach out with any support requests. If you have any questions, please do contact us at cyberanddigital@local.gov.uk.
Best wishes
|
Owen Pritchard
Head of Cyber, Digital and Technology
Local Government Association
|
|
 |
LGA Cyber 360 – Call for Volunteers!
Our Cyber 360 team is offering an exciting opportunity for council officers to sit on a Cyber 360 panel, working with a council as part of a multi-disciplinary team. Officers will have the opportunity to explore and support another council and develop their personal approach to cyber security good practice.
Here is what a volunteer had to say about their experience:
Volunteering on the Cyber 360 team allowed a “…deeper dive into the risk regime of a council, a better understanding of the opportunities and challenges presented at the local level and an appreciation of the differing approaches both within and across councils”.
Please also note, if you have a CISSP or CISM qualification, we are happy to contribute a supporting letter to help you towards meeting your annual mandatory CPD requirements.
We are currently seeking officers to join a Cyber 360 over the summer. If you are interested in taking part or would like to discuss this opportunity in further detail, please contact us at CyberandDigital@local.gov.uk.
LGA Cyber 360 Programme – take part in Cyber 360s
Over the coming months, we aim to support another 20 councils with a Cyber 360. We are calling for more councils to take part in this free and empowering exercise in July and August. A Cyber 360 provides an opportunity to explore cyber security through a new lens. You will be joined by a team of peers and technical experts who will provide in-depth, bespoke support to your council, helping to build cyber capabilities, and develop a whole-council approach to cyber security.
To book a short introductory meeting with the team, please contact CyberandDigital@local.gov.uk.
Workforce capability for C&DDaT roles in local authorities
An important project for us this year is to develop a framework that presents the cyber, digital, data and technology (C&DDaT) capabilities councils need to deliver their statutory requirements and strategic priorities. The first phase of work, running until March 2024, focuses on describing the capabilities required by councils’ adult social care and planning functions.
We are seeking council officers, particularly heads of the above services and those in the C&DDaT workforce, to participate in a series of research conversations and workshops. To find out more, please contact priya.thethi@local.gov.uk.
Calls for views on the development of the Digital Democracy Framework to support political participation and citizen engagement
We have started to develop a ‘what good looks like’ framework for using digital tools to support councils’ democratic functions and increase civic engagement. This framework will be used to support councils in achieving the ‘democracy and participation’ outcome of our 12 strategic outcomes of digitalisation. We want to hear from councils that are using digital solutions to support democracy and participation, to increase attendance at remote meetings, and/or to improve community engagement and collaboration. To learn more or join our new project group for this work, please contact iman.adaci@local.gov.uk.
The LGA and Socitm respond to the Government’s software resilience consultation
Informed by roundtables with the sector and in collaboration with Socitm, we submitted a response to the Department for Science, Innovation and Technology’s (DSIT) call for views on software resilience and security for businesses and organisations. Read our response on the LGA website.
MOVEit vulnerability and Zellis data extortion incident
The NCSC has shared information about the MOVEit vulnerability, and data extortion incidents, which have affected a number of organisations. The NCSC is working with organisations to understand and respond to this incident. Progress (the vendor of the MOVEit software) has issued a new patch for additional vulnerabilities that could be exploited, which MOVEit customers should apply. The NCSC also offers extensive guidance on preventing and mitigating malware attacks, as well as supply chain guidance. Read the full guidance here.
NCSC CEO emphasises the importance of cyber security with AI advancements
During the Chatham House Cyber 2023 conference, Lindy Cameron, NCSC CEO, delivered a speech stressing that rapid advancements in AI must not “retro-fit security” into developing AI technology. The speech emphasised the potential risk of inbuilt vulnerabilities leading to possible attacks, and the importance of supporting all organisations in their development and use of modern technologies. Read the full speech on the NCSC website.
NCSC and international partners shine a light on Lockbit ransomware threat
In a new joint advisory from the NCSC and US, Australian, Canadian, French, German and New Zealand counterparts, new guidance recommends mitigations for network defenders to take against this ransomware strain, considered the highest ransomware threat to UK organisations. The NCSC reports that this was certainly the most deployed strain in the UK in 2022, with a wide range of critical infrastructures being targets of Lockbit affiliates. The full advisory can be read on the US Cyber Agency’s (CISA) website, outlining technical details, statistics, tactics and mitigations.
NCSC launches new free e-learning training package to manage supply chain risks
The training supports organisations to mitigate the potential cost and long-term ramifications of supply chain incidents, and is targeted at procurement specialists, risk owners and cyber security professionals. This training package accompanies existing NCSC eLearning on mapping supply chains and gaining confidence in supply chain security. Access the full training package on the NCSC webpage.
Breckland Council champion the use of Alexa for resident enquiries
Breckland Council has embraced the capabilities of voice activated services via Amazon Alexa, allowing residents to enquire about bin collection related queries. As a trial, the council intends to expand this functionality across broader services. The integration uses AI to learn over time as users’ needs and questions develop. The council is currently working on rolling this out across other smart speakers, to reach more residents and increase availability and accessibility of this information. Find out more on this UK Authority blog.
Manchester City Council – Workforce Digital Skills plan
A multi-service team at Manchester City Council (MCC) is developing a diagnostic tool using the LGA’s Digital Learner Checklist to assess the digital capabilities of their colleagues as part of the Workforce Digital Skills plan at MCC. This is an organisation-wide approach to identify where low-level digital skills are in need of development according to the essential digital skills framework. Colleagues at Manchester are looking to hear from other authorities that have embarked on a similar journey using diagnostic tools in this capacity. If you have any lessons to share or would be interested in learning more about this work or the learner checklist, please contact CyberandDigital@local.gov.uk.
The London Borough of Newham is trialling the use of bike light sensors to support planning infrastructure improvements
Newham Council is partnering with See.Sense on a ‘smart-cycling’ project over the next 12 months. Working with two hundred residents, anonymised data from cyclists’ experiences will be shared with the highways team in the borough, to further consider safer cycling and pedestrian experiences within the Romford Road Active Travel scheme. This integration between data and council planning is a huge development for the council in addressing long standing issues in planning stages. Read more from Newham’s blog on this project here.
Local Digital Declaration discovery project
Local Digital is carrying out a Local Digital Declaration discovery project, to understand its impact and explore its future. The team has identified opportunities for improvement, which include areas of content, service, and strategy, and has been formalising insights to guide its recommendations for the next iteration of the Declaration. If you’d like to hear more about the discovery and what Local Digital has learnt, you can sign up to receive a fortnightly newsletter.
Invite to participate in DLUHC Cyber Assessment Framework research
TPXImpact has been commissioned to complete a user research project alongside DLUHC’s Local Digital team which is currently testing a Cyber Assessment Framework (CAF) for local government to assist councils in understanding and managing their cyber security risk.
This project aims to understand the problems, experiences and challenges faced by council staff regarding cyber security, and to provide insight that will inform the future implementation of the CAF for councils. TPXImpact is now looking to engage non-technical members of senior leadership teams within councils to take part in the research to ensure that this perspective is also reflected in the development of the CAF offer. We would like to invite you to share this invite with colleagues who you think may be interested. Your council does not need to have started using the CAF already.
The research will consist of a 90-minute call to talk through experiences and thoughts about cyber security within your council and will take place remotely ideally between June 14 and July 7. If you know someone who would be interested in taking part, please pass along this form to be completed by July 3.
 Future Councils Update
At the end of last month, Local Digital published its first update on the Future Councils programme, which kicked off in March and will support local authorities across England to become modern and resilient.
These updates will be shared regularly to keep you informed on how the programme is progressing with the eight pilot councils. Sign up to Local Digital’s fortnightly newsletter to stay up to date. Read Future Councils Update #1.
 Measuring the impact of the Local Digital programme
Local Digital has commissioned an independent evaluation of the Local Digital programme to better understand the challenges faced by councils in digital and cyber security and measure the impact of the programme. The evaluation study, conducted by PUBLIC, Daintta and the Society of Innovation, Technology and Modernisation (Socitm), in collaboration with Local Digital, will run from May 2023 to May 2025.
Councils may be invited to participate in user research to provide feedback on their digital and cyber position, the challenges they face, and what delivers the best outcomes for local government.
Secure Connected Places: Cyber security resources launched for councils
The Department for Science, Innovation and Technology (DSIT) has launched the alpha Secure Connected Places Playbook which provides practical cyber security support for local authorities to improve the security of their connected places, or ‘smart city’, projects across the UK. Created in collaboration with a group of local authorities, the playbook includes resources addressing key cyber security challenges including governance and risk management, procurement, and supply chain security and how to conduct a threat analysis. Designed to be accessible for those without a technical background, the playbook will help local authority teams working on connected places projects such as automated traffic and waste management systems, smart street furniture and smart environmental monitoring.
Good Things Foundation and Libraries Connected publish research into libraries’ role in digital inclusion.
A report into the key service offered by libraries in England shares findings and recommendations for national and local government following in-depth research into this vital role within the digital inclusion ecosystem. Findings showed that eight out of ten libraries provide residents with support in basic digital skills, hobbies and work, and the report provides advice and guidance for councils to tailor their support in the evolving digital landscape.
Digital Poverty Alliance unveil National Delivery Plan to end Digital Poverty by 2030
The Digital Poverty Alliance has launched a National Delivery Plan, setting a multi-sector roadmap to end digital poverty by 2030. The plan outlines the role of key players in the reduction of digital exclusion, with particular value on the unique role local authorities play in supporting citizens to access devices, connectivity and support. With millions being left behind as technologies surge, this joined up approach offers guidance for tackling this social issue.
Resources for practitioners working with children and young people – latest release
CyberSprinters:
NCSC’s updated teaching resources for 7 to 11-year-olds are now available. Young people are growing up in an increasingly digital world, exposing them to both the opportunities and risks of the internet. CyberSprinters empowers them to make smart decisions about staying secure online. The award-winning game has been refreshed with additional content, and the lesson plans have been revised, restructured, and quality assured by the PSHE Association.
CyberFirst:
Practitioners working with 11 to 14-year-olds can access a full suite of resources on the NCSC website, These resources highlight some of the most common cyber scams and malicious activity that a pre-teen and teenage internet user might come across and empowers them to make choices to keep themselves more secure online.
Collectively, these resources support the school curricula across the UK’s four nations by linking in with key learning objectives and have been developed for use in formal settings such as classrooms, as well as in non-formal settings such as clubs and youth organisations.
LOTI Data Innovation in London, 3 July, Museum of London
Kicking off London Data Week, LOTI is hosting a full-day in-person event at the Museum of London. Tickets are free for the day to learn about data projects taking place in the city and network other data enthusiasts. Register for free on Eventbrite.
Local Government Information Rights Practitioners’ Event, 5 July (Virtual)
The Information Commissioner’s Office (ICO) is holding an event for local government information rights practitioners. This event will focus on areas of ICO activity most likely to impact upon the local government sector and will be an opportunity to interact and hear more about the ICO’s work. If you are an information rights practitioner within local government, register your interest for this free event here.
Greater Manchester's Local Full Fibre Network learning and legacy event, 6 July, Clayton Hotel, Manchester
Join Greater Manchester Combined Authority (GMCA), Department for Science, Innovation and Technology (DSIT) and Virgin Media O2 Business as they showcase learning and findings from the region’s recent Local Full Fibre Network programme rollout. This event reflects on the £23.8M Local Full Fibre Networks Programme launched in 2020 with the aim of connecting more than 1,500 public sites across the city-region. Register for free on Eventbrite.
Northern WARP Virtual Conference, 14 July (Virtual)
Join the Northern Warp conference to hear from expert speakers and attend seminar sessions with guests from the public and private sectors. Hosted by Northern WARP, a cyber collaboration across the north with Yorkshire & Humber WARP, Northwest WARP and IS Northeast WARP, the conference is especially designed for information, data and cyber security practitioners and managers in the local public sector. Register here for the event and please share with any colleagues in your organisation working in information, data, and cyber security. Attendees have unlimited access to conference content for up to three months after the event
Resilience and Cyber4Good Conference, 20 to 22 September (Virtual)
This event is free for all public sector colleagues and aims to share learning on how to strengthen cyber defences and keep vital public services running in the ever-evolving cyber threats. Last year saw 170 digital decision-makers and leaders join this event. To find out more and to register, please see the UK Authority webpage.
Head of Programme: owen.pritchard@local.gov.uk
Cyber, Digital and Technology Team: cyberanddigital@local.gov.uk
For more information visit our Cyber and Digital hub
|
