UK Launches Consultation To Develop Cybersecurity Profession

Uploaded on 2018-07-23 in NEWS-Cybersecurity News, JOBS-Careers, GOVERNMENT-National, FREE TO VIEW

The Department for Digital, Culture, Media and Sport (DCMS) has launched a consultation into developing the cybersecurity profession in the UK to support the National Cyber Security Strategy (NCSS). To support this effort, it has also proposed to create a UK cybersecurity council, which would sit independently of the government. 

The NCSS sets out the government's ambition to ensure there is a sustained supply of the best possible home-grown cybersecurity talent, which is to be achieved by 2021. This consultation, which closes on August 31, is for a broad range of interested parties including cybersecurity professionals, existing cybersecurity professional organizations in the UK, students and recent graduates, academia and law enforcement communities. 

Margot James, chair of the DCMS, wrote about why an intervention was needed to support the NCSS: "The cybersecurity profession is relatively new and has developed organically over recent years. It is broad and varied; those working in the cybersecurity ecosystem are found across multiple disciplines including engineering, technology, business, social science, compliance and law, with a wide range of different competencies.

"We heard strongly during our pre-consultation engagement that to build on the good work, more needs to be done to create the environment for the cybersecurity profession in the UK to develop at the pace required," she continued. "There was a strong sense from many we engaged with that there is no generally accepted, unifying narrative of what makes a cybersecurity professional. Misconceptions and stereotypes about cybersecurity professionals remain and we heard clearly that many still consider cybersecurity to be a complex subject area and a career which lacks clear routes into and through it."

The NCSS has specified goals to reach between now and 2021. By the end of 2019, there will be an early development and alignment of a coherent set of career specialism pathways into and through the cybersecurity profession and a draft Code of Ethics will be agreed between participating cybersecurity professional organizations. 

To support this, a number of established councils, chartered professional bodies, academics and industry groups have established a collaborative alliance to advance the development of the cybersecurity profession. With an overall aim to provide clarity around the skills, competencies and career pathways within this fast-moving area of professional practice, the initial objective for The Alliance is to support commitments expressed within the UK NCSS to provide a focal point for advising national policy, including the stated intent to recognize professionals through Chartered status. 

The Alliance brings together a range of expertise and disciplines, including BCS, The Chartered Institute for IT, Chartered Institute of Personnel & Development (CIPD), CREST, The Engineering Council, IAAC, The Institution of Analysts and Programmers (IAP), The IET, (ISC)2 and techUK. Talal Rajab, head of program - cyber and national security, techUK, commented on the coming together of these bodies: "techUK is pleased to be a founding member of the Alliance and contribute to the development of the cybersecurity profession. 

"Our digital economy is underpinned by the need for cybersecurity expertise and skills across a range of disciplines. Through bringing together these professional bodies and harnessing the full range of established cybersecurity professional expertise, the Alliance will go a long way to providing a focal point for the sector on the cybersecurity skills, competencies and standards needed to ensure that the UK has the skills needed to remain resilient to the growing cyber-threat.”

This announcement from the government follows the announcement from The Joint Committee for National Security Strategy which criticized the government for not acting urgently enough on critical national infrastructure cybersecurity. Kamila Hankiewicz, managing director, Girls in Tech, also feels strongly that not enough is being done to get people, especially women, into cybersecurity roles: "The current education model is flawed and results in a low number of women applying for technology roles. This means our nation misses out a huge group of talent in positions needed for the future workforce. 

"A shortage of female talent is predominantly down to a lack of awareness of the opportunities that exist and a flawed perception that you need to be strictly technical to work in industries such as cybersecurity, automation or crypto-investing. It is our responsibility, as the future leaders of the UK, to ensure that our governments are investing in children at an early age - preventing them from developing an unconscious bias towards STEM and getting them excited about the opportunities that the future digital economy presents."

Infosecurity:

You Might Also Read:

What Does Brexit Mean For British Data Privacy?:

Are Women Better At Cyber Security?:

 

 

« Cyber Threat Warnings ‘Blinking Red’
Kremlin Hacking Crew Take A 'Roman Holiday' »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

CloudInsure

CloudInsure

CloudInsure is a Cloud Insurance platform designed to specifically address emerging liabilities within the Cloud environment.

Indusface

Indusface

Indusface offers best website security, web application firewall and SSL certificate to keep your online business much safer.

SMiD Cloud

SMiD Cloud

SMiD encryption technology has been developed following the highest security practices to allow the data availability, integrity and confidentiality.

Philippine National Police Anti-Cybercrime Group (PNP-ACG)

Philippine National Police Anti-Cybercrime Group (PNP-ACG)

The mission of the PNP Anti-Cybercrime Group is to implement and enforce pertinent laws on cybercrime and other cyber related crimes and pursue an effective anti-cybercrime campaign.

Financial Services Information Sharing and Analysis Center (FS-ISAC)

Financial Services Information Sharing and Analysis Center (FS-ISAC)

The Financial Services Information Sharing and Analysis Center is the only global cyber intelligence sharing community solely focused on financial services.

Swiss Cyber Institute (SCI)

Swiss Cyber Institute (SCI)

The Swiss Cyber Institute is a registered cyber security education provider by the State Secretariat for Education, Research, and Innovation SERI.

Seigur

Seigur

Seigur is an IT consultancy business providing flexible legal and cyber security services for IT and data privacy programmes.

FPG Technologies & Solutions

FPG Technologies & Solutions

FPG Technology is a technology solutions provider and systems integrator, specializing in delivering IT Consulting, IT Security, Cloud, Mobility, Infrastructure solutions and services.

DigitalPlatforms

DigitalPlatforms

DigitalPlatforms SpA is an Italian group with the mission of providing end-to-end solutions and Internet of Things and Cyber technologies to companies that manage critical infrastructures.

Solcon Capital

Solcon Capital

Solcon Capital is a forward-looking, technology-focused investment firm that is committed to identifying and investing in the most promising areas of innovation and development in the tech industry.

NetHope

NetHope

NetHope is a membership-based organization serving the international nonprofit humanitarian, development, and conservation sector through digital transformation.

SafeBase

SafeBase

Safebase provide the infrastructure for Trust Communication. Our Trust Center enables Security and Sales teams to share and automate access to security, compliance, and privacy information.

Codenotary

Codenotary

Codenotary provide a comprehensive suite of verification and enforcement services to guarantee the integrity of your software throughout its entire lifecycle.

Triovega

Triovega

Triovega are a leading provider for production security and efficiency. Our solutions enhance OT security, and reduce production downtime.

London AI Safety Research (LASR)

London AI Safety Research (LASR)

London AI Safety Research Labs is a technical AI Safety research programme focussed on reducing the risk of loss of control to advanced AI.

Redblock

Redblock

Redblock's mission is to eliminate the drudgery and repetitive 'eye on the glass' work done by Security Teams.