SIRO & Information Governance

Reference: 

978

Request detail: 

Under the FOIA i'd like to request the following information please from the Fire and Rescue Service 

  1. Name of SIRO (Senior Information Risk Owner) if one is appointed, or similar responsibility level if not (Chief Information Governance Officer, Chief Information Security Office etc), or responsible person for SIRO duties.
  2. Contact email of person named in request No. 1.
  3. Name of DPO (Data Protection Officer) or responsible person for DPO duties. 
  4. Contact email of DPO. 
  5. Name of person with overall responsibility for Cyber security or equivalent (excluding persons in q1 and q3).
  6. Contact email of person in Q5.
  7. Name of person with overall responsibility for information security or equivalent (excluding persons in q1, q3 and 5).
  8. Contact email of person in Q7.
  9. Name of person with overall responsibility for information Governance or equivalent (excluding persons in q1, q3, q5 and q7).
  10. Contact email of person in Q9

 

  1. Do you have appointed IAO’s? If so, whom are they, if they have been defined (Name/Job Title – or just job title if they fall below the level of disclosure you publish for FOI’s)?
  2. Are you or have you considered becoming ISO 27001 compliant or certified? If so whom is responsible for maintaining this? (as in, the person)
  3. Contact email of person in Q: 12.
  4. Are you required to connect to the PSN Code of Connection (CoCo)? If so whom is responsible for complying with its requirements? (as in, the person)
  5. Contact email of person in Q:14.

 

It would be preferable for q’s 2, 4, 6, 8, 10, 13 and 15 for you to disclose their personal organisation email,  however if this is not in line with your  FOI release policies a generic email is sufficient, e.g. dpo@***.com.

 

Response detail: 

Thank you for your Freedom of Information request. Please find responses below.

  1. Name of SIRO (Senior Information Risk Owner) if one is appointed, or similar responsibility level if not (Chief Information Governance Officer, Chief Information Security Office etc), or responsible person for SIRO duties. David Myers
  2. Contact email of person named in request No. 1. David.Myers@shropshirefire.gov.uk
  3. Name of DPO (Data Protection Officer) or responsible person for DPO duties. Robert Montgomery
  4. Contact email of DPO. IG@telford.gov.uk
  5. Name of person with overall responsibility for Cyber security or equivalent (excluding persons in q1 and q3). Sally Edwards
  6. Contact email of person in Q5. Sally.Edwards@shropshirefire.gov.uk
  7. Name of person with overall responsibility for information security or equivalent (excluding persons in q1, q3 and 5). Sally Edwards
  8. Contact email of person in Q7. Sally.Edwards@shropshirefire.gov.uk
  9. Name of person with overall responsibility for information Governance or equivalent (excluding persons in q1, q3, q5 and q7). David Myers
  10. Contact email of person in Q9 David.Myers@shropshirefire.gov.uk
  11. Do you have appointed IAO’s? If so, whom are they, if they have been defined (Name/Job Title – or just job title if they fall below the level of disclosure you publish for FOI’s)? Planning and Programmes Officer
  12. Are you or have you considered becoming ISO 27001 compliant or certified? If so whom is responsible for maintaining this? (as in, the person)  No
  13. Contact email of person in Q: 12. N/A
  14. Are you required to connect to the PSN Code of Connection (CoCo)? If so whom is responsible for complying with its requirements? (as in, the person)  No, we will be required to obtain ESN CoCo when the National TETRA radio is replaced with ESN.
  15. Contact email of person in Q:14.  Sally.Edwards@shropshirefire.gov.uk

 

Information Released: 

(Not held)

Received: 

Friday, 3 January, 2020

Responded: 

Tuesday, 28 January, 2020

Topic: