Explore how digital innovation is transforming Welsh communities and empowering future-ready public services

Research and guidance

Case studies

Events, webinars and training

Groups and networks

Featured resources

Latest in the hub

Get involved

If you would like to share any thoughts and feedback, or provide case studies and resources for inclusion in Cyber@Socitm, please contact our team using our contact us page.

Frequently asked questions

What is cyber security?

Cyber security is the practice of protecting computer systems, data and networks from theft, damage, or unauthorised access. In today’s digital landscape, cyber security is crucial because organisations and individuals rely heavily on technology for daily operations and data storage, making them vulnerable to various cyber threats.

Find a set of straightforward definitions for common cyber security of terms below:

National Cyber Security Centre’s glossary of terms 

 

Why is cyber security important for the public sector?

For the public sector, this is particularly critical due to the sensitive information they handle, including citizens’ personal data and essential public services.  Local authorities can use cyber security to support their digital transformation initiatives and protect themselves and the citizens they serve.

A cyber attack can lead to severe disruptions in public services, financial losses and erosion of public trust.

Who is Cyber@Socitm for?

Cyber@Socitm addresses several public sector practitioners to provide tailored information covering likely cyber threats and incidents, support and guidance, opportunities and resources for the following stakeholders: 

  • All staff 
  • Chief Executive and Chief Officers  
  • Social care 
  • Finance  
  • Human resources (HR) 
  • Procurement  
  • Electoral registration 
What are the major cyber threats facing local government?

Cyber threats to local government bodies include:

  • Ransomware attack is a type of malicious software (malware) that encrypts a victim’s files or systems that can disrupt services. 
  • Supply chain attack occurs when a threat targets a trusted third-party provider—such as a software vendor, IT service company, or hardware supplier—to infiltrate the systems of the end user (in this case, a local council). Instead of attacking the council directly, the attacker compromises a supplier that has access to the council’s systems or data.
  • Advanced persistent threats (APTs) is a long-term, targeted cyberattack carried out by highly skilled and well-resourced threat actors—that can compromise systems and infrastructure.

The increasing use of cloud services and Internet of Things (IoT) devices by local councils introduces further vulnerabilities, which threat actors can exploit.

 

What is the advice for local government to minimise the impact of these threats?

Local governments need to implement comprehensive security measures, such as staff training, robust data protection protocols and incident response plans, as well as complying with data protection regulations such as the GDPR, to minimise the impact of these threats.

Furthermore, with the increasing sophistication of cyber threats, such as AI-driven attacks, it is essential for local authorities to stay informed about emerging threats and to adapt their security measures accordingly.