Tag Archives: UK Government Cyber Security Strategy

The UK Cyber Security Strategy 2016-2021 – A New Sheriff in Town?

UK cyber security strategy 2016

 

 

 

 

 

 

 

 

On 1st November 2016, the Chancellor of the Exchequer launched the latest UK Cyber Security Strategy. In a year that has seen rising international tensions around hacking, Philip Hammond commented that hostile “foreign actors” were developing techniques that threaten the country’s electrical grid and airports.

The £1.9bn new strategy will also help enlarge specialist police units that tackle organised online gangs – and contribute towards the education and training of cyber security experts. The programme is funded until the end of 2020. Continue reading “The UK Cyber Security Strategy 2016-2021 – A New Sheriff in Town?” »

avatar

Steve Maddison

Director and Principal Consultant

More Posts

Share

CLAS Consultancy is dead – long live the CCSC scheme?

Certified Cyber Security Consultancy

 

 

 

 

 

 

There is a new name in the information assurance (IA) consultancy world. It’s the Certified Cyber Security Consultancy (CCSC) scheme – launched in June 2015, and sponsored by CESG, with the first cohort of consultancies recently being announced.
Continue reading “CLAS Consultancy is dead – long live the CCSC scheme?” »

avatar

Ben Wheeler

Ascentor marketing and content editor.

More Posts

Share

2016 cyber security predictions for government organisations and the supply chain

Cyber Security predictions

 

 

 

 

 

 

 

2015 was the year in which Minister for the Cabinet Office Matthew Hancock described cyber attacks on government systems as “constant and relentless”. Speaking at IA15 in November, it emerged that an average of 33,000 malicious emails were being blocked at the gateway every month. If ever there was evidence that government systems are just as under threat as those in commercial organisations – this was it.

2016 will bring big changes that affect how the supply chain prepares itself for doing business with government. What’s more, government is moving towards a more shared digital cloud platform.

In this climate of on-going threat and change, we look ahead at what might happen – raising some of the cyber security issues on the horizon for government and the supply chain. Continue reading “2016 cyber security predictions for government organisations and the supply chain” »

avatar

Ben Wheeler

Ascentor marketing and content editor.

More Posts

Share

MOD Suppliers – the new Cyber Essentials requirements explained

Cyber Essentials logo with caption

 

 

 

 

 

 

 

For suppliers to the MOD, change is coming. The planned roll out of CSM in August of 2016 has been delayed. We are now expecting the Cyber Security Model (CSM) to be rolled out to large suppliers from January 2017 – with a full launch by April. FATS (a commercial MOD framework) will also go live in April and it is expected to include the contractual aspects of CSM.

To be compliant with the requirements of the CSM, the MOD supply chain will need Cyber Essentials or Cyber Essentials Plus and have information security governance policies in place. 

Ascentor strongly recommend that defence industry companies prepare for CSM by gaining certification to Cyber Essentials in advance – so they are ready to respond to the new contract requirements. In our experience, the larger the business, the more complex and time consuming the process. Don’t delay and put future contracts at risk.

For assistance on any aspect of CSM or Cyber Essentials, please contact Dave James at Ascentor [email protected]

The following article will tell you more about the CSM…


For suppliers to the MOD bidding for new contracts advertised from January 1st 2016 – there is a new MOD requirement you’ll need to know.

Check to see if the contract involves the transfer of MOD identifiable information from customer to supplier, or the generation of information by a supplier specifically in support of the MOD contract.

If the answer is yes, you and any subcontractors must have achieved Cyber Essentials certification by the contract start date. Continue reading “MOD Suppliers – the new Cyber Essentials requirements explained” »

avatar

Ben Wheeler

Ascentor marketing and content editor.

More Posts

Share

IA15: Public trust in networks and data depends on security

IA15 UK Government's Cyber Security and Information Assurance event

 

 

 

 

 

 

 

Ascentor’s Steve Penny and Paul Trethewey attended the IA15 event in London on the 9th and 10th November where Ascentor was also an event sponsor. Hosted by GCHQ, it was HM Government’s principal event for briefing the UK’s information security leaders. In a year that has seen bigger and more frequent security breaches, the event focused on a topic at the core of Ascentor’s work – the implementation of effective cyber security in our public services.

This high level event drew a number of prominent speakers from government, academia and industry. We were expecting to hear high calibre and thought provoking debates, and that’s exactly what we got, starting with the opening keynote address by Matthew Hancock, Minister for the Cabinet Office and Paymaster General.  Continue reading “IA15: Public trust in networks and data depends on security” »

avatar

Ben Wheeler

Ascentor marketing and content editor.

More Posts

Share

Cutting through the confusion: Government Information Assurance changes explained (part 2 of 3)

Confusion image

 

 

 

 

 

 

 

Part 2 of 3. This is the second in a series of blog articles where Ascentor discuss some of the recent UK Government Information Assurance changes – and what they mean for you.

Written to be concise, they explain the essential ‘need to know’ facts and implications with links to read further should you wish.

In part 2 of the series, we look at:

  • Cyber Essentials
  • The Cyber Security Model (CSM) of the Defence Cyber Protection Partnership (DCPP)
  • The new PSN Compliance process

Continue reading “Cutting through the confusion: Government Information Assurance changes explained (part 2 of 3)” »

avatar

Paddy Keating

Director and Government Service Manager at Ascentor

More Posts

Follow Me:
Twitter

Share

Ascentor joins the Cyber Security Supplier to Government list

HM Govt Supplier to GovtWe are delighted to announce that Ascentor have been granted ‘Provider of Cyber Security Solutions’ status in recognition of supplying cyber security services to the UK government.

The Cyber Security Supplier to Government scheme is administered by the Department for Business, Innovation and Skills (BIS) and supports UK companies pursuing export business opportunities worldwide in ensuring cyber security capabilities.

Continue reading “Ascentor joins the Cyber Security Supplier to Government list” »

avatar

Ben Wheeler

Ascentor marketing and content editor.

More Posts

Share

Cutting through the confusion: Government Information Assurance changes explained (part 1 of 3)

iStock_000037502196_Medium

 

 

 

 

 

 

 

Part 1 of 3. This is the first in a series of blog articles where Ascentor discusses some of the recent UK Government Information Assurance changes – and what they mean for you. Written to be concise, they explain the essential ‘need to know’ facts and implications with links to read further should you wish.

To start the series, we look at:

  • The Government Security Classifications (GSC) system replacing the Protective Marking Scheme
  • HMG IA Standard Numbers 1 and 2 – Risk Assessment Changes
  • Abuse of Impact Levels

Continue reading “Cutting through the confusion: Government Information Assurance changes explained (part 1 of 3)” »

avatar

Paddy Keating

Director and Government Service Manager at Ascentor

More Posts

Follow Me:
Twitter

Share

What’s New in Cyber Security for 2013

Combination Padlock2013 promises to be an interesting year in the cyber security world.

The same old attacks will continue to happen with monotonous frequency and organisations that don’t concentrate on even the basics will continue to fall victim. It is worth pointing out early that just getting the basics right will stop the majority of attacks and help you avoid large fines for non-compliance. If the only thing you do this year is tighten up on the basics, you’ve done well! (CESG’s advice is a good starting point – Ten Steps to Cyber Security.)

Outside of this, there are some BIG things happening this year, especially in the Government cyber arena. Here are our predictions.  Continue reading “What’s New in Cyber Security for 2013” »

avatar

Paddy Keating

Director and Government Service Manager at Ascentor

More Posts

Follow Me:
Twitter

Share

What Every Government Supplier Needs to Know About the UK Cyber Security Strategy

The UK Government’s Cyber Security Strategy landed in November 2011 and the message to Government suppliers is crystal clear – the cyber security standard has just got higher and we all need to raise our game. Continue reading “What Every Government Supplier Needs to Know About the UK Cyber Security Strategy” »

avatar

Paddy Keating

Director and Government Service Manager at Ascentor

More Posts

Follow Me:
Twitter

Share