About your assurance report
What the CAF for local government report you receive from your independent assurer will include.
What the assurance report includes and how to use it
After your independent assurer has reviewed your CAF for local government self-assessment workbook, they will share an assurance report and improvement and implementation (IIP). This will include:
- an executive summary
- a detailed review of the self-assessment and assurance process
- confirmation of which outcomes your council is achieving
- a record of audit which provides a detailed review of the self-assessment, and the indicators of good practice you are achieving
- a partially completed IIP with the assurer’s recommendations
- recommendations that can be used for an executive presentation to share findings with your senior leadership and management team
You can share the assurance report and improvement and implementation workbook with MHCLG once it is finalised. This will help us understand cyber security risks and issues within the sector.
Discuss findings with your assurer
Your assurer will contact you to arrange a time to discuss the findings and recommendations from your report.
Review recommendations as a team
It is a good idea to discuss these findings and recommendations with your CAF team.
The report is a useful tool to show where your council is currently achieving good cyber resilience, and where you might need to focus future efforts.
Using recommendations to make improvements
You can use the recommendations and suggested next steps within the report to prioritise improvements to your council’s cyber security.
This is where you will see the biggest benefit of the CAF.
Find our more about creating your improvement and implementation plan