The Executive Director of Resources submitted a report seeking approval for annual revisions to the Council’s ICT Security Policies and the accompanying summary guidance notes for 2019-20.  The following documents were attached to the report:

·         Appendix 1 – ICT Policy Updates 2019-20 Full Updates List

·         Appendix 2.1 – ICT Security Policy Statement v1.7

·         Appendix 2.2 – ICT Use & Information Security Policy v1.9

·         Appendix 2.3 – ICT Security Golden Rules v1.9

The report explained that the ICT Policy Set consisted of 13 Policy Documents, with key compliance and required behaviour practices summarised in the ‘ICT Security Golden Rules’ summary document.  The proposed changes represented a substantial revision of the Council’s ICT Policies incorporating legislative and best practice requirements and standards that had recently emerged, alongside more routine updates that were needed. The Council could be at risk of fines and possible standards breaches if these changes were not approved and effectively communicated to Staff and Councillors.  The policies would apply to both the Council, the Council’s wholly owned companies and to Councillors.

A list of the changes to the polices was attached to the report at Appendix 1 (ICT Policy Updates 2019-20 Full Updates List), along with three key documents to be issued to Staff and Councillors: the ICT Security Policy Statement (Appendix 2.1), the ICT Use & Information Security Policy (Appendix 2.2) and the ICT Security Golden Rules (Appendix 2.3).  The report set out the training and briefings that would be provided to Council staff, staff of Council-owned companies and Councillors as part of a wider communications plan to embed a good knowledge of the key changes across the Council.

The report also sought a delegation to the Executive Director of Resources, in consultation with the Lead Councillor for Corporate and Consumer Services, to approve future revisions of the ICT Policy Suite in order to speed up the revision release process.

Resolved –

(1)     That the revised ICT Policy Suite & Guidance Notes for 2019-20 be approved;

(2)     That the communications plan for Staff and Councillors including associated briefings and training be noted;

(3)     That the Executive Director of Resources, in consultation with the Lead Councillor for Corporate and Consumer Services, be delegated authority to make future revisions of the ICT Policy Suite and Guidance Notes.