Item - 2022.AU12.3

Tracking Status

  • City Council adopted this item on June 15, 2022 without amendments and without debate.
  • This item was considered by the Audit Committee on June 6, 2022 and adopted without amendment. It will be considered by City Council on June 15, 2022.

AU12.3 - Auditor Generalís Cybersecurity Review: Toronto Fire Services Critical Systems Review Phase 2

Decision Type:
ACTION
Status:
Adopted
Wards:
All

City Council Decision

City Council on June 15 and 16, 2022, adopted the following:

 

1.  City Council adopt the confidential instructions to staff in Confidential Attachment 1 to the report (May 20, 2022) from the Auditor General.

 

2.  City Council direct that Confidential Attachment 1 to the report (May 20, 2022) from the Auditor General be released publicly at the discretion of the Auditor General, after discussions with the appropriate City Officials.

 

Confidential Attachment 1 to the report (May 20, 2022) from the Auditor General remains confidential at this time in accordance with the provisions of the City of Toronto Act, 2006, as it pertains to the security of the property of the City of Toronto. Confidential Attachment 1 to the report (May 20, 2022) from the Auditor General will be made public at the discretion of the Auditor General, after discussions with the appropriate City Officials.

Confidential Attachment - The security of the property of the City of Toronto

Background Information (Committee)

(May 20, 2022) Report from the Auditor General on Auditor Generalís Cybersecurity Review: Toronto Fire Services Critical Systems Review Phase 2
https://www.toronto.ca/legdocs/mmis/2022/au/bgrd/backgroundfile-226306.pdf
Confidential Attachment 1 - Auditor Generalís Cybersecurity Review: Toronto Fire Services Critical Systems Review Phase 2

AU12.3 - Auditor Generalís Cybersecurity Review: Toronto Fire Services Critical Systems Review Phase 2

Decision Type:
ACTION
Status:
Adopted
Wards:
All

Confidential Attachment - The security of the property of the City of Toronto

Committee Recommendations

The Audit Committee recommends that:

  

1.  City Council adopt the confidential instructions to staff in Confidential Attachment 1 to the report (May 20, 2022) from the Auditor General.

 

2.  City Council direct that Confidential Attachment 1 to the report (May 20, 2022) from the Auditor General be released publicly at the discretion of the Auditor General, after discussions with the appropriate City Officials.

Origin

(May 20, 2022) Report from the Auditor General

Summary

Cyberattacks are widely considered to be one of the most critical operational risks facing organizations. The Auditor General has taken a proactive approach in planning her audits and has included them in her annual work plans1.

 

This Phase 2 report is an extension of our work that was underway when we issued our first report entitled "Auditor General’s Cybersecurity Review: Toronto Fire Services Critical Systems Review"2 and completes our review of critical systems at Toronto Fire Services (TFS).

 

At the February 2022 Audit Committee, TFS provided a public report with a confidential attachment on the implementation status of our Phase 1 recommendations.3 This report contains two administrative recommendations. The findings and recommendations from our Phase 2 review are contained in Confidential Attachment 1.

Background Information

(May 20, 2022) Report from the Auditor General on Auditor Generalís Cybersecurity Review: Toronto Fire Services Critical Systems Review Phase 2
https://www.toronto.ca/legdocs/mmis/2022/au/bgrd/backgroundfile-226306.pdf
Confidential Attachment 1 - Auditor Generalís Cybersecurity Review: Toronto Fire Services Critical Systems Review Phase 2

Motions

Motion to Adopt Item moved by Councillor Frances Nunziata (Carried)
Source: Toronto City Clerk at www.toronto.ca/council