DSIT cyber security newsletter - April 2023
Published 4 April 2023
© Crown copyright 2023
This publication is licensed under the terms of the Open Government Licence v3.0 except where otherwise stated. To view this licence, visit nationalarchives.gov.uk/doc/open-government-licence/version/3 or write to the Information Policy Team, The National Archives, Kew, London TW9 4DU, or email: psi@nationalarchives.gov.uk.
Where we have identified any third party copyright information you will need to obtain permission from the copyright holders concerned.
This publication is available at https://www.gov.uk/government/publications/dsit-cyber-security-newsletter-april-2023/dsit-cyber-security-newsletter-april-2023
1. Director’s message
In February the Cyber Security and Digital Identity directorate moved to the brand new Department for Science, Innovation and Technology (DSIT). As well as providing a clearer focus for our work and our priorities it brought us into the same department as some of the key technologies of the future, including quantum computing and artificial intelligence (AI). These specialisms are already having a huge impact on the cyber security industry and in DSIT we will be able to work closer with those teams to ensure we can maximise the opportunities for both innovation and growth. Last month the department launched a new National Quantum Strategy and a white paper on an AI regulation framework with an accompanying consultation. There is further information on this later in this newsletter.
In March I spoke at the OECD Global Forum on Digital Security for Prosperity in Paris. My focus was on how we are improving security standards for IOT technologies in the UK, including through the new Product Security & Telecommunications Infrastructure Act. It was brilliant to speak with close colleagues from across the world and to meet new faces. I particularly enjoyed learning from the security community about how policy and security professionals can work more closely together to make evidence-based interventions.
We have also been working with the National Cyber Security Centre to launch the next phase of the Cyber Aware campaign to help small businesses improve their cyber resilience. We would be grateful for partners’ help in promoting the new Check Your Cyber Security tool and the Cyber Action Plan.
Finally, this month some of our team will be heading to CyberUK in Belfast. This is a great opportunity to engage with the community and I am particularly looking forward to speaking to our international counterparts. Again, this year DSIT will be sponsoring the Innovation Zone where we will be showcasing some of companies that have taken part in the Cyber Runway and CyberASAP programmes. If you are going I hope to see you there.
Erika Lewis
Director, Cyber Security and Digital Identity
2. New ‘check your cyber security’ tool launched in campaign to help small businesses
A new free tool to help small businesses check their cyber security has been launched by the government as part of the Cyber Aware campaign. The new Check Your Cyber Security tool offered by the National Cyber Security Centre allows users to scan their IP address for vulnerabilities and check they are using the most up to date version of their web browser.
The easy-to-use tool shows small businesses, charities and educational institutions how to fix vulnerabilities and improve their cyber resilience. In addition, organisations can get a free Cyber Action Plan which can be completed online in under 5 minutes and produces tailored advice on how they can improve their cyber security.
You can support the campaign and promote the free tools by using the Cyber Aware Resource Centre, which includes images and text you can post on social media and add to your websites and newsletters. For more information about the campaign, please email cybersecurity@dcms.gov.uk.
3. National Quantum Strategy to boost UK security and prosperity
In March, DSIT announced its new National Quantum Strategy, a ten-year vision to make the UK a leading quantum-enabled economy. Backed by £2.5 billion, the strategy will drive the adoption and use of quantum technologies, support business, make the UK the go-to place for quantum businesses and ensure the UK is home to world-leading quantum science and engineering. Quantum technologies pose potential national security challenges so the strategy sets out steps to ensure quantum technologies are secure by design.
4. New white paper sets out UK approach to artificial intelligence
Last week, DSIT also launched an AI white paper on the government’s proposals for implementing a proportionate, future-proof and pro-innovation framework for regulating AI. The white paper highlights both the cyber security threats and opportunities that AI creates. The framework, on which we are consulting until June, suggests that regulators consider the National Cyber Security Centre principles for securing machine learning models when assessing whether AI actors are adequately prioritising security.
5. CyberASAP year 7: applications open
Cohort 7 of CyberASAP is now open for applications. Now in its seventh year, CyberASAP provides academics with the expertise, knowledge and training needed to convert their research into technologies, products and services. The programme creates a pipeline to move great cyber security ideas out of the university lab and into the commercial market.
UK cyber academics who are interested in joining the programme and applying for a share of £800,000 to develop their ideas can apply here. Applications close at 11am on Wednesday 19 April.
6. Cyber Growth and Innovation Forum - Bristol
On Monday 27 March DSIT held a Cyber Growth and Innovation Forum at the Engine Shed in Bristol. The event brought together stakeholders from across the local ecosystem to discuss issues facing the sector including barriers to investment, procurement and product assurance.
As well as panel discussions there were also sessions on mapping the investment journey and discussions on the future growth of the sector and how government can support the ecosystem in the future.
Another Forum will be held in June in Leeds and registration will open shortly. If you are interested in attending please email: cybersecurity@dcms.gov.uk
7. Cyber Ignite: Mobile World Congress trade mission
In February six companies on the DSIT-funded Cyber Runway Ignite programme touched down in Barcelona to take part in Mobile World Congress as part of an international trade mission.
The companies - Visible, Naq Cyber, WCKD RZR, Exalens, Sitehop and Daintta - used the event to showcase their products and services to an audiences of buyers, investors and other partners.
Delivered by Plexal, Cyber Runway Ignite aims to support founders by helping them develop as leaders and helping them build their networks in the UK’s maturing cyber ecosystem.
8. A cyber resilient health and adult social care system in England: cyber security strategy to 2030
In March the NHS launched its new cyber security strategy that sets out its approach to cyber resilience that will apply across both health and social care systems. This includes adult social care, primary care, secondary care and the critical supply chain.
The strategy is based around five pillars: focus on the greatest risks and harms; defend as one; people and culture; build secure for the future and exemplary response and recovery.
The aim is for all health and social care organisations to achieve cyber resilience no later than 2030. The strategy will be supported by a national implementation plan, which we will publish by summer 2023.
9. Cyber security T Level workshops
In partnership with the UK Cyber Security Council, the Department for Education is hosting three cyber security T Level workshops across England.
17th May - London
5th July - Birmingham
20th September - Manchester
In the workshops employers, providers and students will share their experiences on the valuable opportunities T Levels have brought them and some of the challenges facing the cyber security industry that T Levels could help to address.
Lunch will be provided at the end of the event providing a networking opportunity to meet local providers who can offer support to employers starting their T Level and industry placement journey.
10. New board toolkit to help businesses manage cyber risk
The NCSC has published an updated board toolkit to help business leaders embed good cyber security policies and procedures across their organisations. CEOs and senior leaders can play a pivotal role in boosting their organisations’ cyber resilience. The updated guide includes fresh resources to help organisations become more cyber secure and improve board members’ and senior leaders’ confidence in discussing cyber security.
Included in the new toolkit are bite-sized videos; essential activities boards should expect to see in their organisation; indicators of success and an overview of the benefits of cyber security to organisations.
11. CyberUK: the UK Cyber Meet Up - Wed 19 April
Are you attending CyberUK in Belfast this year? Cynam, Factory Cheltenham and Plexal would like to invite you to the inaugural meetup of the UK Cyber Ecosystem taking place at The Treehouse, Belfast 8-42 Upper Arthur St, Belfast BT1 4GH on Wednesday 19 April from 6.30pm.
The event will include a series of pitches from local ecosystems, including Cyber Tech West; Golden Valley; NI Cyber and Manchester’s DISH. Alongside that there will be plenty of time for networking with cyber professionals, start-up founders and attendees from CyberUK.