Programme Health
Team Workload
CE Theme Distribution
Risk Snapshot
Recent Activity
Help & Knowledge Base
NTL Cyber Governance · Guidance for the whole team
Comprehensive guidance on every area of the governance programme — regulatory context, what good looks like, and worked examples.
Report Generator
Training & Awareness Tracker
Owner: Amelia · CAF Objective B6 evidence · Updated quarterly
Track per-department completion rates for all awareness training and phishing simulations.
◈ SECTION A — MANDATORY AWARENESS TRAINING COMPLETION
⚠ SECTION B — PHISHING SIMULATION RESULTS
| Ref | Quarter | Scenario | IT Ops | Control | Finance | Retail | HR | Stations | Procurement | Avg Click % | Follow-up Training? | Notes |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| No phishing simulations logged yet. | ||||||||||||
| ID | Quarter | Theme | Deliverable | Assigned | Status | Progress | Freq | Last Updated |
|---|
Risk Register
5×5 Risk Matrix — Current Position
Numbered dots = current risk position. Appetite: GREEN only (score ≤4)
Risk Appetite
NTL's risk appetite is LOW. Only GREEN-zone risks (score ≤4) are within appetite.
1–4 — Within appetite. Monitor and maintain.
5–9 — Manage actively. Steering Group agenda item.
10+ — Escalate immediately. Board notification.
Risk Register
Policy Register
Supplier Assurance
SOC Management
Owner: Josh (Technical Governance) · Reviewed: Monthly
24/7 Security Operations Centre relationship management · KPIs · Escalations · SLA tracking
◈ SECTION A — MONTHLY KPI SCORECARD
Updated monthly by Josh
| Month | Alerts Total | True Positives | False Positives | MTTD (mins) | MTTR (mins) | SLA Met? | RAG | Notes |
|---|---|---|---|---|---|---|---|---|
| No KPI data yet. Click + Log Month to add the first month. | ||||||||
⚠ SECTION B — ESCALATION LOG
Log every escalation from SOC to NTL cyber team
| Ref | Date / Time | Severity | Description | Escalated To | SOC Response Time | NTL Action Taken | Status |
|---|---|---|---|---|---|---|---|
| No escalations logged. Use the button above to log an escalation. | |||||||
◷ SECTION C — MONTHLY REVIEW MEETINGS
Josh chairs · Cyber Security Manager attends quarterly
| Date | Attendees | Key Topics / Actions | Open Actions | Minutes Filed? | RAG |
|---|---|---|---|---|---|
| No meetings logged yet. | |||||
≡ SECTION D — SLA & CONTRACT REFERENCE
Update from contract — keep current
P1 Response SLA
—
minutes
P2 Response SLA
—
minutes
Uptime SLA
—
%
SLA reference not yet configured. Click Edit SLA to populate from your contract.
Incident Log
| Ref | Date | Severity | Title | Department | How Detected | NIS Notify? | Status | Logged By |
|---|
Audit Trail
Every change recorded with user and timestamp
BAU Task Tracker
| Ref | Title | Assigned | Priority | Due Date | Status | Roadmap Ref | Last Updated |
|---|
| ID | Quarter | Theme | Deliverable | Priority | Status | Progress | Last Updated |
|---|