Item - 2024.AU6.3
Tracking Status
- City Council adopted this item on November 13, 2024 without amendments and without debate.
- This item was considered by Audit Committee on October 15, 2024 and was adopted with amendments. It will be considered by City Council on November 13, 2024.
AU6.3 - Cybersecurity Audit of Toronto Hydro: Overall Network Security and Cybersecurity Assessment of Select Critical Systems
- Decision Type:
- ACTION
- Status:
- Adopted on Consent
- Wards:
- All
City Council Decision
City Council on November 13 and 14, 2024, adopted the following:
1. City Council receive the report (August 2, 2024) from the Auditor General for information.
Background Information (Committee)
https://www.toronto.ca/legdocs/mmis/2024/au/bgrd/backgroundfile-248691.pdf
(August 2, 2024) Report from the Auditor General on Cybersecurity Audit of Toronto Hydro: Overall Network Security and Cybersecurity Assessment of Select Critical Systems
https://www.toronto.ca/legdocs/mmis/2024/au/bgrd/backgroundfile-248692.pdf
AU6.3 - Cybersecurity Audit of Toronto Hydro: Overall Network Security and Cybersecurity Assessment of Select Critical Systems
- Decision Type:
- ACTION
- Status:
- Amended
- Wards:
- All
Committee Recommendations
The Audit Committee recommends:
1. City Council receive the report (August 2, 2024) from the Auditor General for information.
Decision Advice and Other Information
The Audit Committee recessed its public session to meet in closed session to consider this item, as it involves the security of the property of the City of Toronto and its agencies and corporations.
Origin
Summary
Summary from the letter (September 10, 2024) from the Corporate Secretary Toronto Hydro Corporation:
On August 12, 2024, the Audit Committee received a presentation from Ms. Tara Anderson, Auditor General and members of her staff concerning the Auditor General’s Report and its confidential attachment. The Audit Committee received the Auditor General’s Report and its confidential attachment as information.
On August 14, 2024, the Chair of the Audit Committee, Jim Hinds, delivered his meeting report to the Board of Directors in accordance with the meeting agenda. As part of his report, Mr. Hinds noted the attendance of the Auditor General and her staff at the Audit Committee meeting. The Auditor General’s Report and confidential attachment were delivered to the Board of Directors in conjunction with the Audit Chair’s report. It was confirmed that actions were in place at Toronto Hydro with respect to the recommendations set out in the Auditor General’s Report and confidential attachment. As part of his meeting report, the Audit Committee Chair also invited members of the Board of Directors to bring forward questions for the Auditor General concerning the Auditor General’s Report and confidential attachment. No such questions were received, nor was any request for engagement with the Auditor General made by the Board of Directors at its meeting. After completion and receipt of Mr. Hinds report, the Board of Directors noted its receipt of the Auditor General’s Report and confidential attachment and expressed its thanks for the work completed by the Auditor General and the Report.
In accordance with Recommendation 3 of the Auditor General’s Report, the public report is included herewith and is being forwarded to City Council though the City’s Audit Committee for information
Background Information
https://www.toronto.ca/legdocs/mmis/2024/au/bgrd/backgroundfile-248691.pdf
(August 2, 2024) Report from the Auditor General on Cybersecurity Audit of Toronto Hydro: Overall Network Security and Cybersecurity Assessment of Select Critical Systems
https://www.toronto.ca/legdocs/mmis/2024/au/bgrd/backgroundfile-248692.pdf
Motions
That the Audit Committee recommend that:
1. City Council receive the report (August 2, 2024) from the Auditor General for information.