GCHQ Chief Wants A Big Effort To Improve British Cybersecurity

Uploaded on 2019-05-01 in INTELLIGENCE--Europe, GOVERNMENT-National, FREE TO VIEW

The head of GCHQ has made the case for a “genuinely national effort” to help improve the UK’s cyber security. Director Jeremy Fleming stressed the need for continued and increasing collaboration between government, academia and industry partners in the UK and abroad in a keynote speech last week.

He argued that the technological revolution brings with it “increasing complexity, uncertainty and risk”, telling an audience in Glasgow it brings “new and unprecedented challenges for policymakers as we seek to protect our citizens, judicial systems, businesses, and even societal norms”.

The director of the agency often referred to as Britain’s listening post was one of the main speakers at the CYBERUK 2019 conference at the Scottish Event Campus. He told an audience of 2,500 people from across the tech community about the need for new policies and new ways of thinking to complement existing approaches to dealing with cyber security threats.

The GCHQ chief also highlighted the impact of the Active Cyber Defence programme, saying that by last month the UK-hosted share of global phishing dropped below 2% for the first time, down from 5.4% in 2016. Also that year, HM Revenue & Customs (HMRC) was the 16th most phished brand globally, but today it is ranked 146th and accounts for less than 0.1% of all phishing emails.

“Our protective DNS system for the public sector blocked access 57.4 million times with malware such as Confiucker, malware from 2008, still running in public sector networks,” Mr Fleming said.

He encouraged businesses in all sectors to work with GCHQ to find new ways of incorporating these automated services, saying: “If enough do, the results could be truly transformational, a whole-of-nation, automated cyber defence system”.

He spoke about how National Cyber Security Centre (NCSC) analysts are now sharing time-critical, secret information with the private sector in a matter of seconds.  

“In the coming year, we will continue to scale this capability so, whether it’s indicators of a nation state cyber actor, details of malware used by cyber criminals or credit cards being sold on the dark web, we will declassify this information and get it back to those who can act on it.”

He made the case that improving the cyber security of the UK is only achievable if we “build a genuinely national effort, with more connections and deeper cooperation with the private sector and even closer working with our partners and allies”. 

“To make this a success, our strongest defence and most powerful weapon will be our ingenuity, our ability to imagine what has yet to be imagined. To see further into the future than anyone else.

“Our vision for the next stage of the UK’s cyber security strategy aims to do just that. The prize is great, a safer, more successful UK.”

ITV News

You Might Also Read: 

British Cyber Security Strategy Is ‘Chaotic’:

British Politicians Need To Better Understand Cyber Security:

 

« Authenticating Digital Evidence
Russia Plans To Monitor Internet Access »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

iLand

iLand

iland is a global cloud service provider of secure and compliant hosting for infrastructure (IaaS), disaster recovery (DRaaS), and backup as a service (BaaS).

BSA - The Software Alliance

BSA - The Software Alliance

BSA is the leading advocate for the global software industry before governments and in the international marketplace.

AEI Cybersecurity

AEI Cybersecurity

AEI brings together companies, Research Centres, Universities, and other organizations interested in promoting new cybersecurity technologies.

DNV

DNV

DNV are the independent expert in assurance and risk management. We deliver world-renowned testing, certification and technical advisory services.

Protectimus

Protectimus

Affordable two factor authentication (2FA) provider. Protect your data from theft with multi factor authentication service from Protectimus.

Swiss Cyber Storm

Swiss Cyber Storm

Swiss Cyber Storm is a non profit organization hosting the international Swiss Cyber Storm Conference and running the Swiss part of the European Cyber Security Challenges.

Austrian Trust Circle

Austrian Trust Circle

Austrian Trust Circle is an initiative of CERT.at and the Austrian Federal Chancellery and consists of Security Information Exchanges in the areas of the strategic information infrastructure.

Center for Research on Scientific & Technical Information (CERIST)

Center for Research on Scientific & Technical Information (CERIST)

CERIST is a scientific and technical research centre with activities focused in the area of networks, information systems and IT security.

Kratos Defense & Security Solutions

Kratos Defense & Security Solutions

The Kratos Space, Training, and Cybersecurity division addresses key cybersecurity challenges, including cloud security, continuous monitoring, IT security, and risk management.

AdEPT Technology Group

AdEPT Technology Group

AdEPT are a managed services and telecommunications provider offering award-winning, proven and uncomplicated technical solutions for over 12,000 organisations across the UK.

TryHackMe

TryHackMe

TryHackMe is an online platform that teaches cyber security through short, gamified real-world labs. We have content for both complete beginners and seasoned hackers.

KeyData Associates

KeyData Associates

KeyData is a recognized leader in cybersecurity services specializing in Identity and Access Management (IAM), Customer Identity & Access Management (CIAM) and Privileged Access Management (PAM).

Crispmind

Crispmind

Crispmind creates innovative solutions to some of today’s most challenging technology problems.

Buzz Cybersecurity

Buzz Cybersecurity

Buzz Cybersecurity systems and services are designed to proactively guard against common and uncommon cyber threats.

Guardian Angel Cyber

Guardian Angel Cyber

Guardian Angel Cyber, is your trusted ally in safeguarding your digital assets and online presence.

DefectDojo

DefectDojo

DefectDojo is a DevSecOps and vulnerability management tool.