Cyber Security

Reference: 

763

Request detail: 

I am writing to make a request for information under the Freedom of Information Act 2000.

If this request is too wide or unclear, I would be grateful if you could contact me as I understand that under the Act, you are required to advise and assist requesters. If any of this information is already in the public domain, please can you direct me to it, with page references and URLs if necessary.

I understand that you are required to respond to my request within the 20 working days after you receive this letter.

 

1.       Does your organisation adhere to the Network Security guidance outlined by the National Cyber Security Centre, within its ’10 Steps to Cyber Security’?

o   Yes

o   No

 

2.       Do you ensure that security patches for critical vulnerabilities are routinely patched within 14 days, as recommended by the National Cyber Security Centre?

o   Yes

o   No

3.       Have you suffered from any service outages on your network in the last two years, however small?

o   Yes

o   No

 

4.       Did any of these outages cause a loss, reduction or impairment to your organisation’s delivery of essential services?

o   Yes

o   No

 

5.       Was the root cause of the service outage identified and confirmed – at the time or afterwards?

o   Yes

o   No

 

6.       Is it possible that any service outages you have suffered in the last two years was caused by a cyber attack – such as ransomware, DDoS attack, or malware?

o   Yes

o   No

 

7.       Are you aware that Distributed Denial of Service (DDoS) attacks are a significant contribution to service interruptions, outages and downtime?

o   Yes

o   No

Response detail: 

Thank you for your Freedom of Information request. Please refer below:
1.Yes
2.Yes
3.Yes
4.No
5.Yes
6.No
7.Yes

Information Released: 

Yes

Received: 

Friday, 2 February, 2018

Responded: 

Tuesday, 27 February, 2018

Topic: