British Business Feels Let Down By Government

Uploaded on 2018-12-21 in NEWS-Cybersecurity News, GOVERNMENT-National, FREE TO VIEW

UK businesses are looking for greater support from the government in the battle against cyber-crime, a survey of more than 500 UK senior IT professionals by Atomik Research has revealed.

Nearly seven in 10 (68%) IT bosses say their business has suffered at least one cyber-attack in the past year, and almost a third (31%) also said the government does not offer businesses enough guidance or support on cyber security, according to the study sponsored by risk-scoring firm RedSeal.

The study also revealed that one in five (19%) of the UK businesses surveyed had no plan in place to deal with a cyber-attack, and that 65% of IT teams believe their senior management needs to pay more attention to cyber security in 2019.

Two-thirds (67%) of the respondents who said their organisation had been attacked in the past year stated that this had resulted in a financial loss, while 37% said it had resulted in a loss of customers and nearly half (43%) said their organisation had suffered damage to reputation.

This latest research comes just two months after the second annual review of the National Cyber Security Centre (NCSC), where the chancellor of the Duchy of Lancaster, David Lidington, gave a speech on why cyber security matters.

He highlighted that the government’s latest annual Cyber Security Breaches Survey had also revealed that more needs to be done. It flagged that only 30% of UK businesses have a board member with responsibility for cyber security and a small 10% require their suppliers to adhere to any cyber standards.

Lidington also said the government’s next announcement on its cyber security strategy for UK business was planned for some time in December. 

Ray Rothrock, CEO of RedSeal and author of the book Digital Resilience, said: “We commissioned this research to explore how prepared businesses are to continue operating during an attack.

“The number of high-profile breaches has meant that 2018 has become the year where businesses are left wondering what more they can do to protect themselves, how to remain resilient, to keep operating and minimise customer damage.

“Our research highlights the fact that senior IT bosses want the UK government to direct more attention, money and resource to supporting their businesses in the face of cyber-attacks.”

Mark Sayers, deputy director for the National Cyber Security Strategy at the Cabinet Office, acknowledged there was still work to be done, in a speech less than two weeks ago at the International Security Expo 2018 in London.  

However, he said the National Cyber Security Strategy was making good progress, with the launch of the NCSC being one of the early successes in the programme.

“The NCSC was about bringing together our very best intelligence and technical expertise into a single world-leading authority, which has undertaken some pretty pioneering work in its first two years,” he said.

Sayers noted that since the launch of the strategy, the government has continued to invest in, and build, the UK’s cyber capabilities across UK law enforcement to pursue those who carry out cyber-attacks, wherever they are.

“We have developed some ground-breaking early-intervention programmes in an attempt to divert those we have identified as at risk of going down the wrong path [of cybercrime], we are inspiring more people to become cyber security experts and entrepreneurs, we have programmes in schools and universities, and we are even working with industry and the voluntary sector on retraining,” he said.

Sayers said other key achievements included the establishment of the London cyber innovation centre, the introduction of the Cyber Discovery programme for 14-to-18-year-olds, and the expansion of collaboration efforts between the UK and its allies around cyber security.

Looking to the future, Sayers said the focus of the government’s efforts in the next six months would be to address the cyber security skills gap, the government’s cyber security science and technology strategy, and the ambition to make all products and services secure by design.

Computer Weekly:

You Might Also Read:

The Impact Of Cybercrime On UK Business

« Computers Could Soon Run Cold
Google Announces Journalism By AI »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Prosperon Networks

Prosperon Networks

Prosperon Networks support SMB to Enterprise networks through the provisioning of network monitoring software, customisation, consultancy and installation.

Linklaters LLP

Linklaters LLP

Linklaters is an international law firm. Practice areas include Information Management and Data Protection.

Granite Partners

Granite Partners

Granite is a cloud service for the development of business risk management, cyber security and privacy and occupational safety and health.

Positive Technologies

Positive Technologies

Positive Technologies is a leading global provider of enterprise security solutions for vulnerability and compliance management, incident and threat analysis, and application protection.

Guidewire

Guidewire

Guidewire Cyence™ Risk Analytics is a cloud-native economic cyber risk modeling solution built to help the insurance industry quantify cyber risk exposures.

Compumatica

Compumatica

Compumatica is a leading European ICT security manufacturer for cybersecurity and encryption products. Solutions include network security, SCADA/ICS security, Mobile/BYOD and email encryption.

Labris Networks

Labris Networks

Labris Networks specializes in DDoS mitigation, NG Firewall, Unified Threat Management, Centralized Management, Regulatory Compliances and SOC/CERT Services.

SynerComm

SynerComm

SynerComm is an IT solution provider specializing in network and security infrastructure, enterprise mobility, remote access, wireless solutions, audit, pentesting and information assurance.

SevenShift

SevenShift

SevenShift is a security consulting firm with a wealth of experience in the worlds of Cybersecurity and Internet of Things (IoT).

Cyber Threat Defense (CT Defense)

Cyber Threat Defense (CT Defense)

CT Defense specialize in penetration testing and security assessments.

SAST

SAST

SAST provide Static Application Security Testing as a service based on SAST Tools.

Certo Software

Certo Software

Certo are trusted experts in mobile security. At Certo, mobile security is not an afterthought, it’s what we do.

ViewDS Identity Solutions

ViewDS Identity Solutions

ViewDS Identity Solutions develops innovative identity software including cloud identity management solutions, directory services, access and authorization management solutions.

Finite State

Finite State

Finite State enables product security teams to protect the devices we rely on every day through market-leading software threat, vulnerability, and risk management.

CyberNINES

CyberNINES

CyberNINES is a business specializing in helping US Department of Defense contractors become compliant and attest to federal cybersecurity regulation requirements.

Leapfrog Services

Leapfrog Services

Leapfrog offers outsourced managed IT + cybersecurity services that are scalable, aligned, and fit easily into your business model.