ISNorthEast logo

animated warp logo

ISNorthEast is the Warning, Advice & Reporting Point for the north east government community (NEGWARP).

ISNorthEast brings together the governance, assurance and security professionals from public sector organisations in Northumberland, Tyne and Wear, Durham and the Tees Valley. It allows them to get together on a regular basis to share good practice, exchange views and address information assurance and cyber security issues facing local public service organisations that could potentially be affecting everyone.

Membership is open to information security and information assurance officers from non-profit public service organisations in the north east region and their outsourced delivery partners and is free of charge. Members from organisations outside the north east region may be admitted at the forum’s discretion.

ISNorthEast holds quarterly half-day meetings in a central location where common issues are discussed, often with invited expert speakers. In addition to meetings, members receive a daily round ups of threats, vulnerabilities and relevant news stories.

Critically, members have a mechanism to immediately alert each other of real threats being encountered in a sort of ‘neighbourhood watch’ for public data and systems.

Particular successes have been around:

  • Standards: Members have helped each other to achieve ISO 27001 accreditation
  • Security compliance: Government is joining together its networks (starting with those used by councils to connect to Central Government) to form the Public Services Network (PSN) which means all public bodies are having to conform to strict security rules. This has proved an onerous exercise for most yet through co-ordinating our communications with Government and sharing experience the North East was the first region to have all of its councils achieve compliance
  • Protecting national infrastructure: Providing information relating to ICT security threats to the local community and the wider country via GovCertUK
  • Improving resilience and cyber security capacity in the North East Region: One major benefit of ISNorthEast has been forging stronger ties between the councils and wider public sector organisations with members regularly engaging outside of the meetings to receive or deliver advice and practical help to others

The group was started in 2006. It was named ‘ISNorthEast’ in 2013 and formally registered as the Warning, Advice & Reporting Point for the north east government community (NEGWARP) which links to a national network of WARPs, the Centre for the Protection of National Infrastructure (CPNI) and GCHQ’s Communications-Electronics Security Group (CESG).

ISNorthEast has a presence on the CiSP national cyber security platform and its members contribute to wider discussions on the platform including in the North East Region CiSP Group.

Future plans include:

  • Exploring creating a data safeguarding subgroup for schools and academies.
  • Working with colleagues across public and private organisations in the North East region to understand our capabilities and requirements better.

If you are interested in these please contact us.

Member Benefits

Advice Brokering             

  • Regular meetings.
  • A secure online collaboration space to support discussion and knowledge sharing.
  • Information security news stories and developments curated from a number of different sources distributed as a daily email newsletter.
  • Best practice shared with other local authority WARPs.

Trusted Sharing

  • Members share information about security incidents anonymised if required, so that everyone can benefit from lessons learned.
  • Access to information from other local authority WARPs.
  • Councils must report incidents to CESG (the UK National Technical Authority); WARPs are the primary interface between the two.

Critical Alerts via the ISNorthEast warnings and notifications network     

  • Members notify each other of critical issues using an online messaging solution.

Warnings via the ISNorthEast warnings and notifications network            

  • Notifications and alerts on viruses, malware and software vulnerabilities are curated from a number of different sources including other local authority WARPs and distributed by email.


“ISNorthEast is an invaluable forum in which ideas, experience, best practice and common issues that cut across organisational boundaries can be discussed to the benefit of all of the members’ organisations.”

 “We are pleased to have ISNorthEast as not just one of our neighbouring counterpart organisations, but also one of our closest and most like-minded partners. By working together almost from the inception of ISNorthEast both regions have benefitted significantly in being able to share resource, expertise and crucially to speak with a single voice when we need to do so on a national stage. We are also able to rely upon on each other to develop and lead appropriately on mutually beneficial initiatives to derive the most we can for the organisations we serve from ever scarcer resources.”

 “We joined as an ‘out-of-area’ member in 2013. As well as prompt reporting and discussion of emerging security risks the group holds regular forums with industry experts. In the absence of a local WARP, ISNorthEast welcomed us into their group in the spirit of cross-border co-operation.”

"IS North East has provided me with a valuable insight into the Information Security Governance position of key partner organisations. It has proven to be an effective vehicle for frank and open discussion relating to compliance issues which, in my opinion, would not have been possible without its existence." 

HR - ISNorthEast has around nearly 50 members representing 30 organisations (all of the local councils plus national government agencies, academia, health and emergency services).

ISNorthEast is chaired by Paul Woods of Durham County Council, and serviced by Graham Jordan of the North Eastern ICT Partnership.  John Lewis of Redcar and Cleveland Council is Vice Chair.

ISNorthEast has gained recognition and credibility with the public sector and suppliers locally and across the UK.

Current Members include

  • Councils, their agencies and outsourced delivery partners
    • BT South Tyneside
    • Cofely (North Tyneside Council)
    • Connexions Hub Services in Tyne and Wear
    • Durham County Council
    • Gateshead Council
    • Hartlepool Council
    • ICT Gateshead
    • Middlesbrough Council
    • Newcastle Upon Tyne City Council
    • Nexus
    • North Eastern ICT Partnership
    • North Tyneside Council
    • Northumberland County Council
    • Redcar and Cleveland Borough Council
    • South Tyneside Council
    • Sunderland City Council
    • Xentrall ICT Services (Stockton BC & Darlington BC)
  • Emergency Servcies
    • Cleveland Police
    • Durham Constabulary
    • Northumbria Police
    • Tyne and Wear Fire & Rescue
  • Academia
    • Newcastle University
    • Sunderland University
    • Teesside University
  • Health
    • County Durham and Darlington NHS Foundation Trust
    • NHS Business Services Authority
    • NHS Protect
    • Newcastle upon Tyne Hospitals NHS Foundation Trust
    • South Tyneside NHS Foundation Trust
  • Central Government
    • Department of Work and Pensions
    • Homes and Communities Agency
  • Out of Area members
    • Edinburgh City Council
    • Hambleton District Council
    • Hull City Council
    • Yorkshire & Humber WARP
  • Voluntary Sector
    • Gateshead Voluntary Organisations Council


Apply for Membership

Membership Application form

Terms of Reference

ISNorthEast is facilitated by the North Eastern ICT Partnership. Further information is available from:

Graham Jordan, Partnership Analyst,
North Eastern ICT Partnership,,  0191 433 3790,  - @neict  

Useful Links

Notify a threat / vulnerability
Critical incidents should be reported to GovCertUK for attention as well as the local WARP operator. All other incidents should be communicated to GovCertUK via the local WARP operator. This not only ensures that the operator has awareness of the activity, but also ensures that there is a single point of contact for GovCertUK to liaise.

For full incident reporting procedures and categorisation guidelines, see the reporting an incident page (

To notify GovCert email or he GovCert incident helpdesk number is (01242) 709311.


Last updated 16/2/2016