Documente Academic
Documente Profesional
Documente Cultură
Strategy 2011-2016
Annual Report
April 2016
CONTENTS
Five years is a long time in cyberspace. We have made tangible progress against
When we published the UK’s first Cyber these vital objectives. In collaboration with our
Security Strategy, digital technology was industry, academic and international partners,
already having a transformational impact on we have laid solid foundations for the future:
how we consume, share and save information.
The pace of change has accelerated • We have significantly enhanced our national
exponentially since then and will only continue capabilities and technologies to defend
to quicken. Technology is a huge force for ourselves against those who would do
good, an opportunity from which we can all us harm.
benefit. In 2010, the Internet of Things was
still in its infancy; in 2016, over six billion • We have a national approach to incident
connected devices will be in use worldwide, response and secure information sharing
enabling people to connect with people and on threats, through CERT-UK and the
governments and businesses to deliver better Cyber Security Information Sharing
services. By 2020, that number is set to rise to Partnership it hosts.
over 20 billion.
• Businesses of all sectors and sizes now
But we are also living in an uncertain and have unprecedented levels of expert
insecure world – both real and virtual. The guidance and training available to help them
2010 National Security Strategy identified manage their cyber risks.
cyber as one of the top threats to the UK. In
response, the Government has invested £860 • Government digital services are more
million since 2011 in a National Cyber Security secure than ever. We are building in security
Programme to: by design and taking robust action against
attempts at online fraud.
• Tackle cyber crime and make the UK one of
the most secure places in the world to do • Working with critical national infrastructure
business in cyberspace. owners and operators, we now have plans
in place for managing cyber risk.
• Make the UK more resilient to cyber attack
and better able to protect our interests in • Our police forces are actively tackling
cyberspace. serious cyber crime, both at home and
internationally.
• Help shape an open, vibrant and stable
cyberspace that supports open societies • The UK is helping shape the international
and debate on the future of cyberspace.
• Build the UK’s cyber security knowledge, • UK cyber security companies now have an
skills and capability. increased market share internationally.
0.1 Between 2011 and 2016, the 0.3 We have grown our cyber security
Government funded a National Cyber sector and increased our exports
Security Programme of £860 million to overseas. We have built strong
deliver the 2011 National Cyber Security international relationships in cyber
Strategy. The Programme aimed to: security, enabling us to help shape the
future of cyberspace. And we have
• Tackle cyber crime and make the UK started to build the cyber skills and
one of the most secure places in the knowledge the UK needs by putting
world to do business in cyberspace. in place interventions at every level of
the education system and encouraging
• Make the UK more resilient to cyber cutting-edge cyber security research.
attack and better able to protect our
interests in cyberspace. 0.4 Chapter One summarises activities
undertaken during 2015-16 to deliver
• Help shape an open, vibrant and Programme objectives, focusing on
stable cyberspace that supports open initiatives launched during the year. It
societies and does not include those activities which
have continued from previous years.
• Build the UK’s cyber security These are summarised in Chapter Two,
knowledge, skills and capability. which also sets out the broader impact
of the Programme since its 2011 launch.
0.2 Working with industry, academic and Programme highlights are included in the
international partners, we have made illustration on pages 8 and 9. Chapter
significant progress against these Three then looks ahead to the new
objectives. We have deepened our Cyber Security Strategy and Programme
understanding of the cyber threat and starting this year.
increased our capabilities to detect
and defend against it. We have worked 0.5 A breakdown of Programme spend is
with businesses in the UK’s critical included in Annex A at the end of this
national infrastructure (CNI) and more report.
widely to build their cyber resilience and
raised public awareness of how to keep
safe online.
OBJECTIVE 1 OBJECTIVE 2
MAKING THE UK ONE OF THE MOST A UK THAT IS MORE RESILIENT TO
SECURE PLACES IN THE WORLD CYBER ATTACK AND BETTER ABLE
TO DO BUSINESS ONLINE TO PROTECT OUR INTERESTS
IN CYBERSPACE
10 Regional Information Sharing Groups and
over 1750 organisations in CISP, the Cyber CERT-UK: Computer Emergency Response Team for
Security Information Sharing Partnership for national incidents & international CERT liaison
Industry & Government
GCHQ: working to detect & defend against cyber
Cyber Essentials: Over 2000 Cyber Essentials threats
and Cyber Essentials Plus certificates issued.
Over 77,000 users have completed Cyber Central government departments and over 400
Essentials online training for small businesses public bodies on the Public Services Network
Guidance: a wide range now available, including GOV.UK Verify: a new way for users to prove their
“10 Steps to Cyber Security”, “Cyber Attacks: identity securely when using digital government
Reducing the Impact” & “Small businesses: what services. Almost half a million identities verified
you need to know about cyber security” during test phase
The cyber security sector has grown from Centre for Cyber Assessment: provides assessments
£10 billion to over £17 billion and employs of cyber threats and vulnerabilities to more than 40
100,000 people. Almost 80 companies are government departments and agencies
now listed in the Cyber Security Supplier to A new Joint Forces Cyber Group, improved links
Government scheme with industry through the Defence Cyber Protection
Cyber security exports: £1.47 billion in 2014, up Partnership, and a new Cyber Reserve to engage
35% since 2012 & on track for £2 billion target additional cyber experts
by the end of 2016. UK Cyber Demonstration
Centre, showcasing UK cyber expertise, opened
in 2015
OBJECTIVE 3
AND TACKLING CYBER CRIME
A UK HELPING TO SHAPE AN OPEN,
National Cyber Crime Unit in the National VIBRANT AND STABLE CYBERSPACE
Crime Agency: leading 170 domestic &
THAT SUPPORTS OPEN SOCIETIES
international operations to disrupt serious
cyber crime ‘London Process’ global conferences shaping the
A Cyber Unit in each of the nine Regional debate on cyberspace
Organised Crime Units 30 international projects each year to build cyber
HMRC prevented £103 milion of attempted security knowledge and skills
fraud from government systems during 2014-15
OBJECTIVE 4
A UK THAT HAS THE CYBER HIGHER EDUCATION
KNOWLEDGE, SKILLS AND Cyber security included in all computing
CAPABILITY IT NEEDS degrees accredited by the British Computer
Society and the Institution of Engineering &
SCHOOLS Technology
Cyber Security in computer science GCSE Cyber First: to support exceptional
Cyber Security teaching and learning materials undergraduates in cyber security careers
for Key Stages 3-5 12 universities awarded grants from the
Resources for teacher p
rofessional development Higher Education Academy
in cyber security 12 Masters Degrees in Cyber Security certified
Cyber Security Challenge Schools Programme: by GCHQ
800 schools have taken part and 23,000 students
have accessed the complementary learning RESEARCH
materials since 2012 3 Research Institutes
FURTHER EDUCATION 13 Academic Centres of Excellence in Cyber
Security Research
Cyber Security: an integral feature of computing
and digital further education qualifications at 2 Centres of Doctoral Training, 100 PhDs in
Levels 3 and 4, from September 2016 cyber security by 2019
PROGRAMME
ACHIEVEMENTS
2015-2016
Raising industry awareness and providing 1.5 The Government’s 2015 Information
guidance Security Breaches Survey1 indicated a
rise in the number of security breaches
1.1 The Government re-launched “10 Steps experienced by the organisations
to Cyber Security” in January 2015 surveyed. Almost half of respondents
alongside new guidance for businesses: said they were accredited to Cyber
“Common Cyber Attacks: Reducing Essentials or Cyber Essentials Plus, on
the Impact”. Over half of FTSE 350 their way to accreditation or planned to
companies now use the ‘10 Steps’ be accredited in the coming year. Almost
guidance and its use continues to rise. three quarters of large organisations and
two thirds of small businesses said they
1.2 We also launched a second cyber provided ongoing security awareness
security innovation voucher scheme in training to their staff. A new survey will be
2015 to help small businesses build their published in 2016.
resilience and protect themselves from
cyber attacks. Over 400 companies have 1.6 In late 2015, the Government launched
benefitted from both rounds. its third Cyber Governance Health Check
for the UK’s 350 largest businesses. This
1.3 Since 2015, the Department for helps them understand and improve their
Communities and Local Government level of cyber security. The results from
(DCLG), GCHQ, CERT-UK and the the survey as a whole are aggregated
Government Digital Service (GDS) to show how well the UK’s FTSE 350
have led in-depth ’Think Cyber – Think are managing their cyber security and
Resilience’ briefings for around 700 policy help ensure that cyber security risks
makers and practitioners from local are considered at board level. Findings
authorities and local resilience forums. from the 2014-15 survey are included
in Chapter Two. Results of the 2015-16
Incentives to adopt good practice: the role survey will be available later in 2016.
of insurance
Tackling cyber crime
1.4 Insurance does not replace the need for
companies to have robust cyber security 1.7 During 2015, the National Crime
measures but it is an important element Agency’s (NCA) National Cyber Crime
of managing cyber risk. In March 2015, Unit (NCCU) pursued multiple large scale
the Government and insurance brokers, operations against specific malware
Marsh, published a joint report: “UK threats. These included an operation
Cyber Security: The Role of Insurance against Dridex malware, designed to
in Managing and Mitigating Cyber Risk”, harvest online banking details. Working
in collaboration with the UK’s insurance with the FBI, GCHQ and other law
market and a number of UK companies. enforcement partners, the NCCU
It confirmed that participating insurers operation has led to significant disruption
would include the Cyber Essentials to the criminal network.
1
https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/432412/bis-15-302-information_
security_breaches_survey_2015-full-report.pdf
1.28 The UN Group of Governmental Experts, 1.32 Following President Xi’s State Visit to the
including an expert from the UK, UK in October 2015, the UK and China
agreed a report on how international agreed not to conduct or support cyber-
law may apply in cyberspace, and enabled theft of intellectual property,
recommendations for voluntary, non- trade secrets or confidential business
binding norms of responsible State information with the intent of providing
behaviour, confidence building measures competitive advantage.
(CBMs) and capacity building. The
report builds on the previous Group’s 1.33 A UK expert seconded to the NATO
conclusion in 2013 that international law Co-operative Cyber Defence Centre of
applies in cyberspace and is essential Excellence in Estonia has led projects
to maintaining peace and stability during 2015 to support the Centre’s
and promoting a secure, stable and strategic priorities. GCHQ have also
accessible online environment. There is shared with NATO details of their work to
likely to be further work in 2016. certify Masters Degrees in cyber security.
This has sparked interest from both NATO
1.29 The UK also played an active role in and individual Allies keen to replicate the
negotiations by the Organisation for programme in their own countries.
Security and Co-operation in Europe
(OSCE), leading to agreement on 1.34 The UK successfully helped shape the
additional CBMs for cyberspace to EU Cyber Security Strategy and its
enhance interstate co-operation, implementation, providing a stronger basis
transparency, predictability and stability, for co-operation with other EU member
and to reduce the risks of misperception, states. The UK was also instrumental
escalation, and conflict that may in securing informal agreement for
stem from the use of information and the EU Network and Information
communication technologies. Security Directive to improve levels of
cyber security across Europe. Formal
Bilateral relations and multilateral networks agreement is expected in Spring 2016.
PROGRAMME
IMPACT
2011-2016
2.12 As well as training, information sharing 2.16 CPNI has also produced information on
and exercising, we have also focused cyber threats, such as social engineering
efforts on ensuring that systems are as well as the safe use of digital devices
cyber-secure by design. The UK’s Centre and services, to encourage employees,
for the Protection of National Infrastructure wherever they work, to adopt secure
(CPNI) has influenced cyber security online behaviour both in and out of
standards, researching vulnerabilities the office.
and focusing on the key technologies
and systems of cyber infrastructure. 2.17 Sharing information about new and
Through this, it has been able to advise evolving cyber threats is a key part of
organisations both in the CNI and more CERT-UK’s role and it now manages
widely on applying critical controls so the UK’s CiSP. Launched in 2013, this
that they build more resilient systems. is a government / law enforcement /
industry initiative to share securely real-
2.13 In 2014, GCHQ introduced a new time information on cyber threats and
initiative to enhance the protection of vulnerabilities and to provide advice on
UK critical networks from threats in how businesses can protect themselves.
2
National Security Strategy and Strategic Defence Review 2015 https://www.gov.uk/government/uploads/system/
uploads/attachment_data/file/478933/52309_Cm_9161_NSS_SD_Review_web_only.pdf
3
https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/399260/bis-15-37-ftse-350-
cyber-governance-health-check-tracker-report-2014.pdf
4
https://www.icsa.org.uk/knowledge/research/ft-icsa-boardroom-bellwether-survey-winter-2015
5
www.cyberstreetwise.com/smallbusinessreputation
6
http://www.ons.gov.uk/peoplepopulationandcommunity/crimeandjustice/bulletins/crimeinenglandandwales/
yearendingseptember2015
LOOKING
AHEAD
PROGRAMME
FUNDING
2011-16
250
200
£ (millions)
150
100
50
0
2011/2012 2012/2013 2013/2014 2014/2015 2015/2016
Through rigorous financial management, as recognised by the Major Projects Authority and
National Audit Office, we came within 1% of this budget. The table below details how funding
has been spent over the past five years by thematic area of work. This best reflects the
achievements of the Programme as a government-wide delivery programme, with cross cutting
objectives as set out in the National Cyber Security Strategy.
£32.8mn