Key Takeaways:
- The UK Government has launched a Cyber Action Plan, committing £210 million to strengthen defenses across digital public services.
- The plan aims to establish a Government Cyber Unit, led by the UK’s CISO, to improve risk identification, incident response, and recovery capabilities.
- The funding will also create a dedicated Government Cyber Profession, elevating cybersecurity from its current placement under the broader Government Security Profession.
- The UK estimates this investment will help save up to £45 billion annually across the public sector.
- The plan is part of a broader effort to improve cybersecurity in the UK, including the launch of a Software Security Ambassador Scheme to drive adoption of secure development practices.
Introduction to the Cyber Action Plan
The UK Government has launched its Cyber Action Plan, a comprehensive initiative aimed at strengthening the defenses of digital public services. The plan commits £210 million to improve risk identification, incident response, and recovery capabilities across government departments. This investment is part of a broader effort to improve cybersecurity in the UK, following a series of high-profile security failures, including a breach at the Foreign Office and the Legal Aid Agency. The plan also includes the establishment of a Government Cyber Unit, led by the UK’s Chief Information Security Officer (CISO), which will be overseen by the Department for Science, Innovation and Technology (DSIT).
Establishing a Government Cyber Unit
The Government Cyber Unit will play a critical role in improving cybersecurity across government departments. The unit will be responsible for identifying and mitigating risks, responding to incidents, and recovering from cyberattacks. The unit will also create a dedicated Government Cyber Profession, elevating cybersecurity from its current placement under the broader Government Security Profession. This move is expected to improve the government’s ability to attract and retain top cybersecurity talent, and to develop a more robust cybersecurity culture across government departments. Furthermore, the unit will work closely with other government agencies and private sector organizations to share best practices and stay ahead of emerging threats.
The Need for Improved Cybersecurity
The need for improved cybersecurity in the UK is urgent. A scathing report by the National Audit Office (NAO) found that 58 of 72 critical IT systems reviewed across central government contained "multiple fundamental system controls that were at low levels of maturity." This lack of maturity leaves government departments vulnerable to cyberattacks, which can have serious consequences for public services and the economy. The UK estimates that cyberattacks can cost the public sector up to £45 billion annually, making it essential to invest in cybersecurity to protect public services and the economy. Additionally, the UK’s digital minister, Ian Murray, has emphasized the importance of improving cybersecurity, stating that "cyberattacks can take vital public services offline in minutes – disrupting our digital services and our very way of life."
Challenges and Criticisms
While the Cyber Action Plan is a step in the right direction, some critics have raised concerns about the size of the funding pot and the challenges of implementing the plan. Colette Mason, author and consultant at Clever Clogs AI, pointed out that the £210 million funding pot is small compared to the cost of a major cyberattack, such as the Jaguar Land Rover hack, which cost 0.5 percent of GDP. Mason also noted that the Government Cyber Unit will be operating in a complex environment, with a sprawling patchwork of national and international suppliers, contractors, and legacy systems holding up every digital service. Craig Wentworth, principal analyst at TechMarketView, agreed, saying that the challenge extends beyond funding to legacy infrastructure, fragmented estates, and the expanding attack surface created by rapid digital transformation itself.
Software Security Ambassador Scheme
In addition to the Cyber Action Plan, the Department for Science, Innovation and Technology (DSIT) has launched a Software Security Ambassador Scheme to drive adoption of its Software Security Code of Practice. The scheme has recruited several major organizations, including Cisco, NCC Group, Palo Alto Networks, Sage, and Santander, as initial ambassadors. These ambassadors will champion secure development practices and contribute to future policy, helping to promote a culture of cybersecurity across the private sector. The initiative mirrors CISA’s Secure by Design pledge, which has recruited over 340 organizations to commit to improvements like multi-factor authentication and mandatory patching. By promoting secure development practices, the scheme aims to reduce the risk of cyberattacks and improve the overall cybersecurity posture of the UK.
Conclusion
In conclusion, the UK’s Cyber Action Plan is a critical step towards improving cybersecurity across government departments. The plan’s commitment to establishing a Government Cyber Unit, creating a dedicated Government Cyber Profession, and driving adoption of secure development practices are all important steps towards reducing the risk of cyberattacks. However, the plan’s success will depend on its ability to address the complex challenges of legacy infrastructure, fragmented estates, and the expanding attack surface created by rapid digital transformation. By investing in cybersecurity and promoting a culture of cybersecurity across government departments and the private sector, the UK can reduce the risk of cyberattacks and protect its public services and economy. Ultimately, the success of the Cyber Action Plan will depend on its ability to stay ahead of emerging threats and to continually adapt to the evolving cybersecurity landscape.