CHECK test
Case reference FOI2019/00879
Published 14 August 2019
Request
CHECK is the umbrella term for the National Cyber Security Centre approved penetration test companies and the method in which they conduct a penetration test. Could you please tell me whether you have had a CHECK test in
i) 2016/17,
ii) 2017/18 and
iii) 2018/19? Could you also tell me what cyber security do you have aside from CHECK work including the following i) user education ii) other penetration tests iii) internal security team iv) other.
Response
Our annual PSN compliance and external audit require a yearly independent penetration test to be conducted by a CREST accredited supplier under the CHECK scheme. In addition, specific new risks, technologies or emerging threats are tested over and above baseline testing.
Could you also tell me what cyber security do you have aside from CHECK work including the following
- user education - We conduct regular internal training and awareness including working with 3 rd parties.
- other penetration tests - see above.
- internal security team - n/a
- other - n/a.
Documents
This is Guildford Council's response to a freedom of information (FOI) or environmental information regulations (EIR) request.
You can browse our other responses or make a new FOI request.