Isle of Wight Council LGPS - Cyber Security Policy

The Administering Authority recognises that cyber risk is a real and growing threat. The aim of the Isle of Wight Council LGPS Cyber Security Policy is to set out how the administering authority intends to assess and manage cyber risk relating to the Fund on behalf of all its employers and members. The Council acknowledges that it has multiple interests as the Administering Authority, an employer in the Scheme, as well as a provider of shared ICT services to the Fund. 

The Pension Fund Committee has been delegated ultimate responsibility for managing the Fund and the internal controls which therefore includes ensuring it is satisfied with how cyber risk is being managed. It is the responsibility of the Pension Fund Committee to assess the cyber security arrangements both internally and externally are fit for purpose for the Fund.

The Strategic Manager: Pensions is the officer responsible for day-to-day implementation of the new cyber security policy, although ultimate responsibility lies with the Director of Finance & s151 Officer who is the designated individual responsible for the cyber resilience framework outlined in this Policy.