Yesterday the UK government launched its National Cyber Security Strategy 2016-2021 so we thought we’d give you a quick heads-up on its main points together with the odd comment. This is the UK government’s reaction to the simple fact that the cyber threat is getting worse by the day and something needs to be done about it and quick. It’s also a recognition of the fact that the previous approach of asking UK companies nicely to sort themselves out just hasn’t worked. So there’s an element of “big brother taking over for your own good” in this document.
They’re throwing £1.9 billion at the problem and approaching it from four angles:
Here’s what they’re doing in a nutshell:
The strategy sets out a variety of ways in which the UK will work with other countries to establish responsible behaviour principles, track down and prosecute criminals, help other countries improve their cyber security and equip NATO for cyber warfare.
Although there are many new initiatives outlined in this strategy, the overwhelming tone is that of doing a lot of the same things as before, but with a greatly renewed sense of urgency. There is a general implication that the stakes have been raised since the last UK government cyber strategy came out in 2011 and that a lot of the advice is still being ignored with disastrous consequences. Whether or not you agree with everything that’s in there, there’s little doubt that it’s sorely needed.
CertiKit is a provider of document toolkits and has helped more than 4000 organizations worldwide with their compliance.
For more guidance on implementing the Cyber Essentials scheme, we’ve put together a list of our best free resources including sample documents, blogs and downloadable documents.