190308AuCtteePaper6AAITrisk

This document contains an overview of IT risks for the Cairngorms National Park Authority. Four main risks were identified: insufficient ICT support for increasing reliance on technology, inadequate cybersecurity, insufficiently robust IT services, and insufficient resources to manage large projects. The Authority is addressing these through a new IT strategy (SASI), focusing on stable, accessible, secure, and innovative IT systems. This includes improving internal IT support, strengthening cybersecurity measures, and transitioning to cloud-based solutions while carefully managing associated costs and risks. The Authority is also actively pursuing certifications like Cyber Essentials Security PLUS to enhance security.