Services

Forums

ISfL like all WARPs hold regular forums and in our case, we meet approximately every six weeks or so. This helps to facilitate trusted, secure face to face information sharing between members. Our online collaboration platform allows the members to share information outside of the forums.

The forums also provide the opportunity to hear updates from leaders in the field of cybersecurity, information assurance and governance. Key to this process is the closed members-only section of the meeting where incidents are discussed along with peer support, advice and guidance. The NCSC also have the chance to update members in a trusted environment.

Research Outputs

From these meetings, ISfL has commissioned a number of items of research and is happy to share these with broader public sector organisations. This includes our Protective Marking Methodology and the ISfL BYOD Toolkit, as well as our recent research in collaboration with others on DMARC and digital certificates and public sector website security.

Problem Solving

ISfL will also take on and promote member led questions, like “why is it so difficult to exchange email with the police” (which was resolved some years back by the police in effect joining the WARP and a presentation on this topic by the police as well as a reciprocal presentation at their conference about why it was so difficult to exchange emails and data with Local government). As well as representing membership concerns and observations to central government groups such as PSN and NCSC.

Conferences

ISfL continues to run an annual conference each year. These are open to members from WARPs across the UK and have had a packed agenda with some leading-edge thinking and speakers as well as a mini-expo of 8 to 10 suppliers. They are well received and continue to grow in popularity, and we are grateful to Socitm who help deliver these events on our behalf.

Training

ISfL also seeks to help broker training and has run and supported a number of events beyond the forums, such as supplier-led workshops, and practitioner-led skills sessions including things like pen-testing (vulnerability scanning), digital forensics, and software-defined networks.