Comment

18.12.17

The cyber security strategy, one year on

The UK’s progress in strengthening cyber security measures since the national strategy came out has been encouraging, but more needs to be done to tackle the lingering issue of skills, says Talal Rajab, head of cyber and national security at techUK.

It’s no exaggeration to say that 2017 was the year that cyber was brought closer to the forefront of the public’s consciousness than ever before. With operations being cancelled due to the WannaCry ransomware attack that affected the NHS, to the Houses of Parliament suffering a brute force attack, public sector bodies were at the forefront of the government’s response to the growing cyber threat. That is why, through the National Cyber Security Strategy, the government set out an ambitious framework that aimed to make the UK the most secure place to live, work and do business online. 

Evaluating the strategy one year on, it is clear that its main efforts went into the establishment of the National Cyber Security Centre (NCSC) which, in its first year, responded to 590 significant cyber-attacks across the UK (read more on page 50).

The resources and expertise behind the NCSC are clear signs of the seriousness with which government takes cyber security. However, with an expected increase in state-sponsored threats, the UK will need to continue to raise the bar across the board in terms of its response and resilience. This includes the continued development of the regulatory framework, with the General Data Protection Regulation (GDPR) and Network and Information Systems Directive (NIS) due to come into effect in May 2018.

It is contingent, however, on a key issue that affects countries around the world: skills. Recent estimates suggest that there will be a global cyber security workforce shortfall of 1.8 million by 2022. That is primarily why the strategy commits the UK to developing “a sustainable supply of homegrown cyber professionals.” It has delivered a multitude of great initiatives looking to develop these skills, such as CyberFirst, along with a wider range of government and industry-backed schemes catering to digitals skills more generally.

Work is also currently being undertaken by the NCSC and DCMS to develop a professional body for cyber security, offering clearer career pathways that can only make the sector more attractive to potential candidates. Its development is surely to be supported, so long as it complements existing organisations and systems rather than adding a layer of complexity.

This progress is encouraging, but more could certainly be done to join these efforts up under a more coherent strategy and approach. Similarly, whilst the long-term fix of reaching those at school age is an important one, there is an urgent short-term need for initiatives that reskill the current workforce, identifying transferrable skills and creating pathways for returners. More can also be done to tap into the potential of candidates with neuro-diverse conditions.

The strategy has also seen the emergence of many exciting potential new initiatives that are aimed at growing the UK cyber sector and using our sovereign cyber capabilities to stay ahead of the threat. One cyber security innovation centre, based in Cheltenham, has opened and hosted some exciting cyber security start-ups, whilst another is due to open in London over the next 12 months. DCMS has also run ‘boot-camps’ for cyber start-ups and mentoring programmes for academics to help them turn their ideas into viable cyber security companies.

Another example is a potential ‘proving ground’ for cyber products to be tested by the NCSC. Clearly there will be sensitivities surrounding public endorsement by government bodies of private technologies, but as the UK moves to a global, more export-driven international framework (as advocated by current government ministers) UK industry successes should indeed be encouraged and promoted.

It’s too early to judge the National Cyber Security Strategy with four years still to go, but 2017 has given the UK a platform to achieve its ambitions and meet the growing challenges the UK cyber sector faces.

Top image © everythingpossible

 

FOR MORE INFORMATION
W: techuk.org
W: gov.uk/government/policies/cyber-security

Comments

There are no comments. Why not be the first?

Add your comment

 

public sector executive tv

more videos >

latest public sector news

Counties urge government to step in amid rocketing house prices

16/02/2018Counties urge government to step in amid rocketing house prices

House prices in county areas have risen by three times the rate of those in London over the last year, prompting the County Councils Network (CCN... more >
LGO disappointed with council’s response to family ‘injustice’

16/02/2018LGO disappointed with council’s response to family ‘injustice’

The Local Government Ombudsman (LGO) has today hit out at the Council of the Isles of Scilly for its belated response to a report highlighting in... more >
Councils want power to push developers on 420,000 unbuilt homes

16/02/2018Councils want power to push developers on 420,000 unbuilt homes

Councils have warned that more than 420,000 homes in England are still waiting to be built despite planning permission already being granted. ... more >
149x260 PSE Subscribe button

the raven's daily blog

Whole of government must act together to fulfil the ambition of the Industrial Strategy

11/12/2017Whole of government must act together to fulfil the ambition of the Industrial Strategy

Jen Rae, head of innovation policy at Nesta, says the aims in the government’s new Industrial Strategy are ambitious, but will require a shift in policymaking in order to be realised in full. Last Monday saw the long-awaited launch of the UK’s new Industrial Strategy, the government’s plan for prosperity and growth in a ... more >
read more blog posts from 'the raven' >

interviews

Are we taking a risk on education?

14/12/2017Are we taking a risk on education?

Adrian Prandle, director of economic strategy and negotiations at the National Education Union (NEU), questions the stark lack of announcements a... more >
A fantastic opportunity awaits you

11/12/2017A fantastic opportunity awaits you

Eight months on from the government’s announcement of major training reforms, Anne Milton, minister for apprenticeships and skills at the D... more >
Andy Burnham: the crisis unfolding in front of our eyes

10/12/2017Andy Burnham: the crisis unfolding in front of our eyes

With homelessness on the rise across the country, politicians in central and local government are desperately looking for new solutions. Andy Bur... more >
This is Manchester, we do things differently here

10/12/2017This is Manchester, we do things differently here

Joanne Roney OBE, chief executive of Manchester City Council, speaks to PSE’s Luana Salles about the region’s pioneering plans f... more >

last word

The importance of openness after Grenfell

The importance of openness after Grenfell

Following the recent Grenfell Tower tragedy, Lord Porter, chairman of the LGA, argues that if the public are going to have faith in the safety testing process then everything must be out in the o... more > more last word articles >

editor's comment

25/10/2017Take a moment to celebrate

Devolution, restructuring and widespread service reform: from a journalist’s perspective, it’s never been a more exciting time to report on the public sector. That’s why I could not be more thrilled to be taking over the reins at PSE at this key juncture. There could not be a feature that more perfectly encapsulates this... read more >

public sector focus

How can cost-conscious organisations benefit from an imaginative provider?

22/01/2018How can cost-conscious organisations benefit from an imaginative provider?

Advertisement feature Rafael Cortes, hea... more >
Driving inclusive growth in the West Midlands

14/12/2017Driving inclusive growth in the West Midlands

PSE’s Josh Mines reports from the Socia... more >