During which month do you receive your annual IT Health Check (ITHC)?
Between March – May
Other than your ITHC, do you purchase any other Penetration services; if so, during which month?
Yes, as demand requires
As a local authority, you should use providers of ITHC who are CREST of Tiger Programme accredited; Do you enforce stricter requirements than this, i.e. Check Team accredited?
The Council does use providers of ITHC who are CREST of Tiger Programme accredited. Stricter requirements are not enforced.
How do you award your penetration/ITHC contracts, i.e. framework, quotations or tender?
Quotations
What is the cost threshold mandated before you go to a public tender?
This depends on the specific procurement, for example if the framework in place
Do you have any other compliance requirements, e.g. N3 or ISO 27001?
No
Do you have any IT security infrastructure projects planned within the next 12 months; if so, what and when?
Yes, firewall refresh within the next 6 months
Do you have any managed IT security services; if so, what?
Yes, vulnerability assessment services
Do you have a specific budget for IT security; if so, how much?
No, depends on specific requirements and business case
Who is responsible for managing IT security infrastructure? Please provide their contact details.
Scomis, Great Moor House, Bittern Road, Sowton, Exeter, EX2 7NL
Who is responsible for IT security infrastructure procurement? Please provide their contact details.
Scomis, Great Moor House, Bittern Road, Sowton, Exeter, EX2 7NL (working alongside ICT commissioning)
Are you currently reviewing IT security controls or goods through any IT transformation processes?
Our delivery of the strategic roadmap (and good practice) dictates regular reviews