At the heart of effective Housing Associations are data collection systems that provide information to support decision making stock condition, rents, loans, tenant services, health and safety and achievement of consumer standards. Some of this information may be highly sensitive personal information relating to safeguarding individuals. Compliance with the Data Protection Act to ensure the security, data integrity, and availability of these systems is paramount. An increase in remote working has added to the cyber security risks associated with critical information assets. In an attempt to exploit changes in the way of working, ransomware, malware and phishing attacks are increasing. Many Housing Associations use Cloud IT service providers, and may have limited in-house IT capability or capacity. Cloud services are experiencing an increase in attacks such as account hijacking and impersonation.
In order to provide assurance on the management of these risks we can provide focussed reviews in specific areas such as:
- Software Application Control Reviews of your data collection systems;
- Data Analytics reviews to examine data integrity and quality;
- Cyber Security reviews and vulnerability scanning of your technology assets and infrastructure (including cloud services);
- Data Protection Compliance Audits.