York, is home to 200,000 people and receives up to 7 million visitors every year. As well as having a rich cultural heritage, York is also a forward thinking city and in recent years the City of York Council has embarked on an ambitious plan to turn York into a technologically advanced digital city.
Such a large-scale project involves the complex integration of new networks into the City of York Council’s operations. It also requires carefully co-ordinated efforts to ensure employees adhere to new regulations and new policies. The challenge is to make people aware of the importance of information security. The City of York Council, therefore, recognised the need to invest in a software suite that would support their staff in these times of great change while also fitting into their ICT strategy of “Open, Simple & Digital.”
After assessing the range of options available to them, the City of York Council decided that the MetaCompliance Advantage software would be an ideal investment.
The Advantage software module automates and manages the key tasks associated with user awareness and engagement in order to ensure careful management of all information. This includes risk assessment, the measurement of organisation wide IT security posture, and policy management.
Roy Grant, Head of the ICT and Digital programme at City of York Council, stated: “We recognised the need and benefit to our organization of improving both the access and understanding of our policies and other key updates across our diverse workforce, including staff who do not access the corporate network and application suite as part of their role. Following a review of the market place, we selected the MetaCompliance suite based upon it meeting our policy based requirements.”
The Advantage software fulfilled the demands of City of York Council by allowing them to demonstrate compliance with legislative requirements while also allowing them to prove due care to third party auditors and regulators. With its unique Dynamic Intercept feature, the enforcement functionality within the software allows companies to heighten employee awareness of key information governance practices at the time when it is most optimal. Moreover the reporting capability of the software allows problem users, departments, or regions to be easily and quickly identified in the MetaCompliance Governance dashboard.
Roy Grant underlined the impact that the Metacompliance software had made on the staff at the City of York Council: “Some of the clear benefits for selecting the MetaCompliance suite include its central administration functionality, it is easy to deploy and easy to use, the solution is very granular, and it will support the delivery of a managed learning programme.”
After enjoying the benefits of the Advantage software module, the City of York Council have also decided to invest in the MyCompliance software module to ensure the continued engagement and education of their staff.
The very essence of MyCompliance software is engagement. The key to protecting any organisation from compliance and information security problems is the participation of all users, including staff and contractors, in ongoing initiatives that mitigate the risk of incidents and compliance failure. The MyCompliance software allows any user to access compliance content at anytime, from anywhere, and from any device.
Explaining their early experience with Metacompliance software and their investment in further Metacompliance products, Roy Grant commented: “The purchase of any new solution must fit within the main themes of our new ICT Strategy – Open, Simple & Digital - that clearly included user experience and the added benefits of re-usability beyond the initial scope. We have successfully deployed both corporate wide and targeted policy updates to help raise their understanding that will also raise the levels of good business practice within City of York Council and will help us to mitigate against reputational and financial loss or damage”.
MetaCompliance has a clear vision of making Compliance and IT Security easier for organisations. The software can ensure the active participation of all staff in compliance initiatives such as policies, eLearning, and surveys, thus mitigating the risk of compliance incident and the associated fines. The software can be used to demonstrate that staff understand compliance obligations by being tested with questions. The ability to deliver increased user participation in compliance and IT Security campaigns provides the necessary audit information to generate reports that demonstrate the organisation’s “duty of care” to Regulators.