GCHQ Chief Wants A Big Effort To Improve British Cybersecurity

The head of GCHQ has made the case for a “genuinely national effort” to help improve the UK’s cyber security. Director Jeremy Fleming stressed the need for continued and increasing collaboration between government, academia and industry partners in the UK and abroad in a keynote speech last week.

He argued that the technological revolution brings with it “increasing complexity, uncertainty and risk”, telling an audience in Glasgow it brings “new and unprecedented challenges for policymakers as we seek to protect our citizens, judicial systems, businesses, and even societal norms”.

The director of the agency often referred to as Britain’s listening post was one of the main speakers at the CYBERUK 2019 conference at the Scottish Event Campus. He told an audience of 2,500 people from across the tech community about the need for new policies and new ways of thinking to complement existing approaches to dealing with cyber security threats.

The GCHQ chief also highlighted the impact of the Active Cyber Defence programme, saying that by last month the UK-hosted share of global phishing dropped below 2% for the first time, down from 5.4% in 2016. Also that year, HM Revenue & Customs (HMRC) was the 16th most phished brand globally, but today it is ranked 146th and accounts for less than 0.1% of all phishing emails.

“Our protective DNS system for the public sector blocked access 57.4 million times with malware such as Confiucker, malware from 2008, still running in public sector networks,” Mr Fleming said.

He encouraged businesses in all sectors to work with GCHQ to find new ways of incorporating these automated services, saying: “If enough do, the results could be truly transformational, a whole-of-nation, automated cyber defence system”.

He spoke about how National Cyber Security Centre (NCSC) analysts are now sharing time-critical, secret information with the private sector in a matter of seconds.  

“In the coming year, we will continue to scale this capability so, whether it’s indicators of a nation state cyber actor, details of malware used by cyber criminals or credit cards being sold on the dark web, we will declassify this information and get it back to those who can act on it.”

He made the case that improving the cyber security of the UK is only achievable if we “build a genuinely national effort, with more connections and deeper cooperation with the private sector and even closer working with our partners and allies”. 

“To make this a success, our strongest defence and most powerful weapon will be our ingenuity, our ability to imagine what has yet to be imagined. To see further into the future than anyone else.

“Our vision for the next stage of the UK’s cyber security strategy aims to do just that. The prize is great, a safer, more successful UK.”

ITV News

You Might Also Read: 

British Cyber Security Strategy Is ‘Chaotic’:

British Politicians Need To Better Understand Cyber Security:

 

« Authenticating Digital Evidence
Russia Plans To Monitor Internet Access »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

FT Cyber Resilience Summit: Europe

FT Cyber Resilience Summit: Europe

27 November 2024 | In-Person & Digital | 22 Bishopsgate, London. Business leaders, Innovators & Experts address evolving cybersecurity risks.

Intercede

Intercede

Intercede is a cybersecurity company specializing in digital identities, derived credentials and access control, enabling digital trust in a mobile world.

Xcitium

Xcitium

Xcitium (formerly Comodo) is and industry leading provider of state-of-the-art endpoint protection solutions. Our Zero threat platform isolates and removes all ransomware & malware infectictions.

Direct Recruiters Inc

Direct Recruiters Inc

Direct Recruiters is a relationship-focused search firm that assists IT Security and Cybersecurity companies with recruiting high-impact talent.

Morphisec

Morphisec

Morphisec's world leading prevention-first software stops ransomware and other advanced attacks from endpoint to the cloud.

NowSecure

NowSecure

NowSecure are the experts in mobile app security testing software and services.

Crypto Quantique

Crypto Quantique

Crypto Quantique's ground-breaking technology radically simplifies the process of generating a hardware root of trust in an IoT device.

Scout Ventures

Scout Ventures

Scout Ventures is an early stage venture capital firm that is making the world a better, safer place by cultivating standout frontier technologies.

spiderSilk

spiderSilk

spiderSilk is a Dubai-based cybersecurity firm, specializing in simulating the most advanced cyber offenses on your technology so you can build your best security defenses.

DNX Ventures

DNX Ventures

Based in Silicon Valley and Tokyo, DNX Ventures is an early stage VC for B2B startups in sectors including Cybersecurity.

Forever Group

Forever Group

Forever Group is a Managed Services Provider specialising in Telecommunications, IT Support, and Cyber Security.

Resilience Cyber Insurance Solutions

Resilience Cyber Insurance Solutions

Resilience Cyber Insurance combines insurance expertise with cybersecurity and data talent to deliver clear, effective solutions to protect you for the cyberrisks of today—and tomorrow.

Quside

Quside

Quside, a spin-off from The Institute of Photonic Sciences in Barcelona, designs and manufactures innovative quantum technologies for a wide range of applications including cyber security.

stackArmor

stackArmor

stackArmor specializes in compliance and security-focused solutions delivered using our Agile Cloud Transformation (ACT) methodology.

Senteon

Senteon

Senteon is a turnkey cybersecurity platform designed to make securing confidential data affordable, understandable, and streamlined for small-to-mid sized businesses and MSPs.

Maintel

Maintel

Maintel provides cloud and managed communications services. We help our customers to deliver exceptional customer experiences, and to securely access their applications and their data.

Modern Networks

Modern Networks

Modern Networks is a leading provider of IT managed services to the UK’s commercial property sector and medium sized enterprises.