techUK news and views
10 Oct 2024

MHCLG launch Cyber Assessment Framework for Local Government

The Ministry of Housing, Communities and Local Government (MHCLG) has launched the Cyber Assessment Framework (CAF) for local government to set a clear cyber security standard for the sector

MHCLG launches cyber security standard for local government

Cyber attacks affecting the public sector are increasing. They can disrupt local government’s most important services, threaten the confidentiality of residents, and lead to significant financial costs. Working with councils, MHCLG’s Local Digital team has tailored the CAF which was originally developed by the National Cyber Security Centre. The CAF for local government will help councils to:

  • assess the current cyber resilience of their organisation
  • identify and mitigate vulnerabilities that could disrupt their important services

The initial stages of the CAF for local government are available now, so councils can get started while MHCLG’s Local Digital team continues to develop the CAF for local government based on feedback. The full service is expected to be available by spring 2025. Undertaking the CAF for local government is voluntary and can be completed alongside other cyber security standards.

To date, MHCLG's cyber support for councils has focused on remediating serious vulnerabilities to help improve the sector's resilience to malware and ransomware. With the evolving cyber threat, it is now time to turn our attention to how we support councils to strengthen their cyber resilience for years to come. 

The CAF for local government helps organisations assess and improve their cyber security through a risk-based and holistic approach. This requires collaboration across the organisation, breaking down perceptions that cyber security is purely an IT issue. This is a step-change that's needed to protect important local government services in an ever-changing threat landscape. I would like to thank all the local authorities who have helped pilot the CAF for local government over the past couple of years and work with us to ensure that it will be a success.’ Ben Cheetham, Deputy Director of Digital at MHCLG. 

Key steps of the CAF for local government include:

  • identifying critical systems
  • completing self-assessments
  • an independent assurance review
  • developing an improvement and implementation plan to address vulnerabilities

Further information and guidance on how to get started is available on the Local Digital website.

Cyber Security Programme

The Cyber Security Programme provides a channel for our industry to engage with commercial and government partners to support growth in this vital sector, which underpins and enables all organisations. The programme brings together industry and government to overcome the joint challenges the sector faces and to pursue key opportunities to ensure the UK remains a leading cyber nation, including on issues such as the developing threat, bridging the skills gap and secure-by-design.

Learn more

Join techUK's Cyber Security SME Forum

Our new group will keep techUK members updated on the latest news and views from across the Cyber security landscape. The group will also spotlight events and engagement opportunities for members to get involved in.

Join here

Upcoming Cyber Security events

24 October 2024

Telecoms Security Act: Industry Sessions - October 2024

Online Meeting
28 October 2024

techUK Subsea Cables Summit 2024

techUK and Online Roundtable
11 November 2024

Digital Landline Switchover: Digital Transformation and Innovation in Telecare for London and the South East

London Market briefing

Cyber Security updates

Sign-up to get the latest updates and opportunities from our Cyber Security programme.

 

 

 

Return to listing