Cyber security operations centre will ‘protect’ Welsh councils

The Welsh Government has announced plans for a specialist facility dedicated to preventing tech attacks on public sector organisations.

Once operational, CymruSOC [security operations centre] will be managed privately by Socura. The Cardiff-based firm will be charged with monitoring threats including phishing and ransomware. Intelligence will also be shared with the National Cyber Security Centre. 

The announcement follows a series of high profile cyber attacks on significant public organisations, and politicians. In April, Infotec reported on a ransomware incident at NHS Dumfries & Galloway, which resulted in confidential clinical data being published online.  

This followed a similar attack on the British Library, and cyber security breaches at the Electoral Commission in 2023. Meanwhile, a number of MPs fell victim to a phishing scam, potentially leaving highly sensitive communications within reach of illicit actors. Last month, we spoke to an expert in cyber security about the prevalence of such events, including a ransomware incident at Leicester City Council. 

You can also revisit our roundup of the seven worst data breaches in 2023. 

‘By sharing a SOC, and threat intel, across all Welsh local authorities, even the smallest Welsh town will now have the expertise and defences of a large modern enterprise organisation,’ said, Andy Kays, CEO of Socura. 

Cllr Geraint Thomas, Leader of Merthyr Tydfil County BC, which collaborated on the SOC launch, added: ‘It provides some reassurance to the population of Wales that if they use their local authority for any kind of service, then CymruSOC will provide additional support and protection to enhance existing cyber security controls.’