GCHQ Chief Wants A Big Effort To Improve British Cybersecurity

The head of GCHQ has made the case for a “genuinely national effort” to help improve the UK’s cyber security. Director Jeremy Fleming stressed the need for continued and increasing collaboration between government, academia and industry partners in the UK and abroad in a keynote speech last week.

He argued that the technological revolution brings with it “increasing complexity, uncertainty and risk”, telling an audience in Glasgow it brings “new and unprecedented challenges for policymakers as we seek to protect our citizens, judicial systems, businesses, and even societal norms”.

The director of the agency often referred to as Britain’s listening post was one of the main speakers at the CYBERUK 2019 conference at the Scottish Event Campus. He told an audience of 2,500 people from across the tech community about the need for new policies and new ways of thinking to complement existing approaches to dealing with cyber security threats.

The GCHQ chief also highlighted the impact of the Active Cyber Defence programme, saying that by last month the UK-hosted share of global phishing dropped below 2% for the first time, down from 5.4% in 2016. Also that year, HM Revenue & Customs (HMRC) was the 16th most phished brand globally, but today it is ranked 146th and accounts for less than 0.1% of all phishing emails.

“Our protective DNS system for the public sector blocked access 57.4 million times with malware such as Confiucker, malware from 2008, still running in public sector networks,” Mr Fleming said.

He encouraged businesses in all sectors to work with GCHQ to find new ways of incorporating these automated services, saying: “If enough do, the results could be truly transformational, a whole-of-nation, automated cyber defence system”.

He spoke about how National Cyber Security Centre (NCSC) analysts are now sharing time-critical, secret information with the private sector in a matter of seconds.  

“In the coming year, we will continue to scale this capability so, whether it’s indicators of a nation state cyber actor, details of malware used by cyber criminals or credit cards being sold on the dark web, we will declassify this information and get it back to those who can act on it.”

He made the case that improving the cyber security of the UK is only achievable if we “build a genuinely national effort, with more connections and deeper cooperation with the private sector and even closer working with our partners and allies”. 

“To make this a success, our strongest defence and most powerful weapon will be our ingenuity, our ability to imagine what has yet to be imagined. To see further into the future than anyone else.

“Our vision for the next stage of the UK’s cyber security strategy aims to do just that. The prize is great, a safer, more successful UK.”

ITV News

You Might Also Read: 

British Cyber Security Strategy Is ‘Chaotic’:

British Politicians Need To Better Understand Cyber Security:

 

« Authenticating Digital Evidence
Russia Plans To Monitor Internet Access »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Qualitest Group

Qualitest Group

Qualitest is the world’s largest pure play Quality Assurance and software testing company.

Rohde & Schwarz Cybersecurity

Rohde & Schwarz Cybersecurity

Rohde & Schwarz Cybersecurity provide solutions for Secure Networks, Secure Communications, Network Analysis, and Endpoint Security.

IS Decisions

IS Decisions

IS Decisions builds affordable and easy-to-use Access Management software solutions, allowing IT teams to effectively secure access to Active Directory infrastructures, SaaS apps and data within.

National Cyber Security Center (NCSC) - Hungary

National Cyber Security Center (NCSC) - Hungary

The National Cyber Security Center was established in 2015 by uniting the GovCERT-Hungary, National Electronic Information Security Authority (NEISA) and the Cyber Defence Management Authority (CDMA).

Gita Technologies

Gita Technologies

Gita Technologies works to create integrated solutions to the thorniest problems in the field of intelligence and cyber today.

NanoLock Security

NanoLock Security

NanoLock delivers the industry’s only end-to-end platform for the IoT and connected devices ecosystem.

Liberty Mutual

Liberty Mutual

Liberty Specialty Markets offers specialty and commercial insurance and reinsurance products, including Cyber, across the USA, Europe, Middle East and other international locations.

Ridge Global

Ridge Global

Ridge Global works with C-suite executives and corporate directors to build more resilient organizations through innovative preparedness, protection, response and education capabilities.

Reliance Cyber

Reliance Cyber

Reliance Cyber (formerly Reliance ACSN) help to monitor and manage your organisation’s security infrastructure 24/7, so you can make sure all threats and issues are dealt with.

AnaVation

AnaVation

AnaVation is a trusted partner delivering high-value, cost-effective solutions that solve the most complex technical and analytical problems for our customers.

Eastern Cyber Resilience Centre (ECRC)

Eastern Cyber Resilience Centre (ECRC)

The Eastern Cyber Resilience Centre is part of the national roll out of Cyber Resilience Centres in the UK which began in 2019.

Trellix

Trellix

Trellix is an extended detection and response (XDR) solutions provider created from a merger of McAfee Enterprise and FireEye Products.

Xceptional

Xceptional

Xceptional is a multi-award-winning technology services firm that celebrates the unique strengths of people with autism.

Third Point Ventures

Third Point Ventures

Third Point brings deep technical expertise, a strong network of relationships, and decades of investing experience to add value to our partners throughout their journey from idea to IPO and beyond.

Phriendly Phishing

Phriendly Phishing

Phriendly Phishing offers phishing awareness training programs designed to ward off potential security threats and minimise the impact of cyber attacks.

Defence Innovation Accelerator for the North Atlantic (DIANA)

Defence Innovation Accelerator for the North Atlantic (DIANA)

The NATO DIANA accelerator programme is designed to equip businesses with the skills and knowledge to navigate the world of deep tech, dual-use innovation.