The most recent Security Awareness Special Interest Group (SASIG) had a focus on collaboration as a key factor in the fight against cybercrime.
Home Office minister for Security James Brokenshire MP opened by underlining the government’s commitment to making the UK one of the best places to do business online, but emphasised the need to address the problem of under reporting of internet crime by business – a theme throughout the day.
Host BT’s Phil Packman spoke from experience of the London 2012 Olympic and Paralympic Games. His perspective – the operation of the Network Perimeter Security for the Olympic and the Paralympic Games. He shared the experience from the Games and the benefit of creating a team that had been activated for the event and was now allowed to remain intact to build on the experience and intelligence gained: “The whole team contributed to the success of the operation and we’ve all learned so much from the experience to take forward and build upon. It was, as much knowing, when to flag up concerns as the technology we used. We need to know what normal looks like and be in this for the long game. Above all we need to be sharing intelligence because our adversaries are sharing their information all the time.”
Chris Ensor of CESG, (the information security arm of the Government listening station GCHQ) and Jo Miller (the Department for Business, BIS) talked about what the Government is doing to select a cyber security standard that can mitigate a number of cyber security risks. This is continuing the work done last year to develop the ’10 Steps to Cyber Security’ and to raise the bar in terms of UK companies’ ability to meet the cyber risk. The first stage of the selection process has completed with over 50 expressions of interest received and more than ten standards cited as potential candidates. BIS will be looking to industry to help in the next phase by supporting the standard that best meet their needs.
City of London Police Commissioner, Adrian Leppard delivered a reminder to the audience that half of reported crime is internet related. He said: “It’s a high-yield, low-risk for organised crime∑Society is under attack from cyber crime and cyber enabled fraud, causing significant damage to the UK economy and destroying businesses and lives. Organised crime groups are exploiting new technology to corrupt personal and corporate IT systems and to target a mass audience with evolving and emerging frauds, making big money with little apparent risk.
“An effective response demands key decision makers in public and private organisations to recognise the nature and scale of the threat we now face and be committed to working together now and in the future, sharing intelligence and expertise across sectors and national borders.”
A need for a greater sense of intelligence sharing, the difficulty of imposing a ‘one size fits all’ standard and a holistic approach to preventing cyber-attacks were raised. “It’s a conversation that needs to continue – and fast,” said SASIG chair Martin Smith in closing remarks.
About SASIG
Established in 2004 by Martin Smith MBE BSc FSyI, The Security Awareness Special Interest Group (SASIG) is a subscription free quarterly networking forum organised by The Security Company (International) Limited as an entirely no-cost exercise. Membership is drawn from CSOs, CISOs and staff with responsibility for security awareness. It is a member of the ISSA-sponsored Information Security Awareness Forum (ISAF). SASIG has a members’ website at www.thesasig.com.
