Keeping Young People Off The Dark Web

UK police are looking to cybersecurity firms to help implement a strategy of steering youngsters away from a life in online crime. 

The National Crime Agency's Prevent campaign sits within the wider five-year UK National Cyber Security Strategy of 2016-2021. The NCA's scheme aims to point teenagers towards careers in cybersecurity rather than following a path that may lead them towards more serious offending.

Cyber Security Challenge is running the programme in partnership with the UK's National Crime Agency.

"The Prevent strategy is new," Jez Rogers, a police cyber prevention officer from the South East Regional Organised Crime Unit told The Register.

"As a team we are only about six months old. We and the national network are still finding our feet. Our primary audience is 13 to 19 years old as the average age of arrest for cybercrime is 17 (one in four teenagers have committed some form of cybercrime)."

One key aspect of the scheme is organising "cybercrime intervention workshops", a day-long event for young hackers who are straying into criminality. The focus is on showing youngsters that there's a lucrative legitimate career for their interests and skills if they change tack.

A spokeswoman for Cyber Security Challenge said that so far three workshops each with about a dozen youngsters have been run nationally (two in Bristol and one in Newcastle). Only one girl has featured among the groups so far. Most of the youngsters have strayed into criminality after getting involved in the shadier aspects of gaming, some have committed hacks against their school's systems and others have engaged in lower-level forms of other online criminality or hacktivism. Attendees under 18 are accompanied on the day by a parent or guardian.

The common thread is youngsters who have shown technical talent and interest in computers but poor judgment. It hasn't reached this stage as yet but Cyber Security Challenge wants the scheme to be regarded as an alternative to a police caution for minor offending and comparable to workshops for adult drivers who commit speeding offences.

"The numbers of young people 'on our books', as in managed offenders, is low, however through referrals our interventions are gathering pace," Rogers told us.

"In essence we will identify, intervene, divert, and if necessary manage, those with cyber talent. We are aiming to educate young people, even those that are on the cusp, or committing lower-level offences against the Computer Misuse Act, to turn them away from the 'dark side' and illuminate the positive opportunities that exist for their talents as long as they wear a 'white hat'."

He added: "We preach the expected global shortfall figures for cyber security professionals by 2022 as a potential motivator."
The shortfall in skilled infosec professionals is expected to reach 1.8 million worldwide by 2022, or 350,000 in Europe, according to infosec training and professional certification org (ISC)2.

Rogers wants to draw attention to the scheme as well as canvass for assistance from private sector firms.

"We are a little 'chicken and egg' but we do need industry to step up to provide mentorships/apprenticeships/work experience and the like to show positive diversions and pathways for those young people we deal with." 

The Register

You Might Also Read: 

Training Young Hackers To Stop Cybercrime:

« Iran Targets Kurds With Spyware
The Human Factor Is Essential To Eliminating Bias in Artificial Intelligence »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Social-Engineer

Social-Engineer

Social-Engineer is a team of outside–the–box thinkers that share a common focus on human-to-human social engineering.

Council of European Professional Informatics Societies (CEPIS)

Council of European Professional Informatics Societies (CEPIS)

CEPIS is the representative body of national informatics associations throughout Europe and represent over 450,000 ICT and informatics professionals in 32 countries.

Scale Computing

Scale Computing

Scale Computing is an industry leading application platform for EDGE computing environments covering retail, manufacturing, financial services and government.

vArmour

vArmour

vArmour is the industry’s first distributed security system that provides insight and control for multi-cloud environments.

Atea

Atea

Atea is the market leader in IT infrastructure for businesses and public-sector organizations in Europe’s Nordic and Baltic regions.

SYSGO

SYSGO

SYSGO is the leading European provider of real-time operating systems for critical embedded applications in the Internet of Things (IoT).

NSA Career Development Programs

NSA Career Development Programs

NSA offers entry-level programs to help employees enhance their skills, improve their understanding of a specific discipline and even cross-train into a new career field.

Shift5

Shift5

Shift5 focus on securing operational technology (OT) by building best-in-class, dual-use products serving military and commercial entities.

Macquarie Telecom Group

Macquarie Telecom Group

Macquarie Telecom is Australia's datacentre, cloud, cyber security and telecom company for mid-large business and government customers.

Quantifind

Quantifind

Quantifind enables financial crimes/fraud analysts and investigators to make better decisions, faster, with intelligent automation.

Strategic Technology Solutions (STS)

Strategic Technology Solutions (STS)

Strategic Technology Solutions specialize in providing Cybersecurity and Managed IT Services to the legal industry.

Transatlantic Cyber Security Business Network

Transatlantic Cyber Security Business Network

The Transatlantic Cyber Security Business Network is a coalition of UK and US cyber security companies which facilitates collaboration to help address critical cyber security challenges.

Tidelift

Tidelift

Tidelift provides the tools, data, and strategies that help organizations assess risk and improve the health, security, and resilience of the open source used in their applications.

Memcyco

Memcyco

Memcyco is a provider of cutting-edge digital trust technologies to empower brands in combating online brand impersonation fraud, and preventing fraud damages to businesses and their clients.

Lansafe

Lansafe

Lansafe stands as a leading managed service provider in the UK, seamlessly integrating IT, Telecoms, Security, Electrical and Cyber Security solutions.

Heyhack

Heyhack

Heyhack is a SOC 2 Type II certified automated penetration testing platform for web apps and APIs.