You are currently viewing DCMS Cybersecurity Newsletter – May 2022

DCMS Cybersecurity Newsletter – May 2022

1. Message from the director

This week I’m attending CyberUK, the UK government’s flagship cybersecurity event, in Newport. Drawing inspiration from the National Cyber ​​Strategy, the theme of the event will be a “whole of society” approach to cybersecurity and how we can all work together to make our digital lives safer. I look forward to attending as it will provide me with the opportunity to reconnect with colleagues and partners. If you’re here, please come say hello. It will be great to meet many people that I have only ever seen on a computer screen.

Again this year, DCMS will sponsor the Innovation Zone, which allows companies that have gone through our growth programs to meet buyers, investors and other contacts who can help them grow and develop their business. The area will be a great showcase of their work. They will also have the opportunity to participate in a Cyber ​​Den, where they can pitch their products and ideas in front of a panel of experts.

Erika Lewis

Director, Cybersecurity and Digital Identity

Department of Digital, Culture, Media and Sports

2. Call for advice on strengthening consumer protections against malicious apps

The National Cybersecurity Center has released a report that reveals that people’s data and money are at risk due to fraudulent and poorly designed apps that can be exploited by hackers.

To provide better consumer protection, DCMS has called for input from the tech industry on enhanced security and privacy requirements for companies running app stores and developers building apps.

Under new proposals, app stores for smartphones, game consoles, TVs and other smart devices could be asked to commit to a new code of practice outlining baseline security and privacy requirements . It would be the first measure of its kind in the world. The consultation closes on Wednesday 29 June.

Read the app security press advisory for more information.

3. UK Labor Market Cybersecurity Skills Report 2022

This month, DCMS published its annual report on cybersecurity skills in the UK labor market. The report found that UK businesses continue to lack staff with the technical skills, incident response skills and governance skills needed to manage their cybersecurity. This included 51% of businesses with a basic skills deficit and being unable to perform the basic types of tasks set out in the government-approved Cyber ​​Essentials program.

The report also revealed that the demand for cybersecurity professionals has increased significantly over the past 12 months. On average, there were 4,400 basic cybersecurity releases each month of 2021, a 58% increase from 2020. This means there is an estimated annual shortfall of around 14,000 cybersecurity professionals .

The National Cyber ​​Strategy outlines the government’s plans to improve and expand the nation’s cyber skills at all levels and create a diverse, world-class cybersecurity profession.

4. New CPNI Supply Chain Security Guidelines

To strengthen the protection of supply chains, including cybersecurity, the UK Center for the Protection of National Infrastructure, in partnership with the Department for International Trade and the Chartered Institute of Procurement and Supply, has created Protected Procurement: Supply Chain Security Guidance.

Providing holistic security guidance, the guidance focuses on integrating security into the procurement process from the start, rather than conducting extensive and resource-intensive supply chain mapping.

DCMS research shows that many companies of all sizes do not protect themselves sufficiently against cyberattacks originating in their supply chains. The 2022 Cybersecurity Breaches Survey found that only 13% of companies review risks from immediate suppliers, while only 7% address risks from broader supply chains.

5. Ethnic minorities at the cybersymposium

Last month, DCMS funded the first Ethnic Minority Cybersymposium in Birmingham. Attended by delegates and students from across the UK, the aim of the conference was to discuss ways to improve diversity in the cyber sector.

The keynote was delivered by Simon Hepburn, CEO of the UK Cyber ​​Security Council, who highlighted the importance of diversity in cyber teams and the steps the Council is taking to support it. Andrew Elliot, Deputy Director of Cyber ​​Security, DCMS also spoke about the various initiatives taken by the government over the years and how they have helped improve diversity in the cyber sector, such as Cyber ​​Explorers, CyberASAP and UKC3 – UK Cyber ​​Cluster Collaboration.

Read more about the event in this Cyber ​​Quarter blog.

6. South West Cyber ​​Center opens in Chippenham

In May, the Swindon and Wiltshire Local Enterprise Partnership will open the UK’s first business-led cyber center in Chippenham. Located in Greenways Business Park, the Business Cyber ​​Center will deliver economic growth in Swindon and Wiltshire, Cyber ​​Valley and Western Gateway by supporting existing and emerging digital and cybersecurity businesses.

Swindon and Wiltshire Local Enterprise Partnership, CEO, Paddy Bradley, said: “The BCC will transform the future of UK businesses by making cybersecurity a catalyst for growth. By working alongside e-businesses and educators and having a diverse group of organizations tied to one site, the BCC will provide key support and enable significant growth in skills and skilled jobs in our region.

7. DCMS Cybersecurity Program Assessments

On behalf of DCMS, RSM UK is currently evaluating some of our cybersecurity programs including Cyber ​​Runway, CyberASAP, UKC3 and LORCA. As part of this, they are currently seeking feedback from those who have applied or participated in these programs.

Surveys have been emailed to applicants and program participants and we would appreciate if anyone who received one completed it by Thursday, May 12. Your response will help DCMS improve programs and inform important decisions about future funding and policy.

You can find more information about the survey, its content and a link to the privacy notice in the initial invitation email.

Leave a Reply