Presentation is loading. Please wait.

Presentation is loading. Please wait.

Reducing Cyber Security Risks in the UK Public Sector

Published byAnthony Haynes Modified over 6 years ago

Similar presentations

Presentation on theme: "Reducing Cyber Security Risks in the UK Public Sector"— Presentation transcript:

1 Reducing Cyber Security Risks in the UK Public Sector
Alison Whitney National Cyber Security Centre

2 Our Vision Helping to make the UK the safest place to live and do business online What we do Reduce the cyber security risk to the UK; Respond effectively to cyber security incidents;  Understand the UK’s cyber security environment, sharing knowledge, addressing systemic vulnerabilities; and  Nurture the UK's cyber security capability, providing leadership on key national cyber security issues. OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

3 OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

4 NCSC Digital Government’s Remit
Central Government in all its guises Local Government Health and Social Care Emergency Services Devolved Administrations Crown Dependencies and British Overseas Territories OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

5 What does help from the NCSC look like?
Alerts, advisories and guidance on our website Cascading information through associations, trade bodies and similar groups: the one-to-many approach Briefings at events and conferences Cyber Security Information Sharing Partnership (CiSP) – private forums Bespoke consultancy for the most challenging risks Active Cyber Defence: NCSC provided services to make (public sector) organisations safer Incident Management Walk through what these things look like Emphasise that we don’t have finite resources so we have to prioritise Note that we will sometimes do things because they are the first-use of a new technology even if the risks to the system/service aren’t that high Our focus is both on citizen-facing online services and Enterprise IT OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

6 PHISHING & MALWARE MITIGATION
Active Cyber Defence WEBCHECK MAILCHECK UK PUBLIC SECTOR DNS PHISHING & MALWARE MITIGATION OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

7 UK Public Sector DNS Service
One of the NCSC’s most widely deployed active cyber defence capabilities Currently available to all public sector organisations On average the service is actively blocking 70,000 attempts to access known malicious sites each week Partnership with Government Digital Services (GDS) and Nominet UK Details on how to register: OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

8 WebCheck Helping you to secure your public sector websites
Free to use website configuration and vulnerability scanning service As of October the service had 877 users scanning 5547 unique URLs 151 urgent issues have been fixed following WebCheck notifications To sign up for the service: OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

9 MailCheck The service supports organisations to adopt the DMARC security protocol Prototype service unique domains registered Over 41 million spoofed s of HMG domains have been reported blocked For further information on how to implement DMARC: OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

10 OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

11 Phishing and Malware Mitigation Service
A service that protects the HMG brand from phishing and common web-inject malware threats In excess of attacks successfully taken down Reduction in average time an attack remains live Sites hosted in the UK reduced from 27 hours to 1 hour median HMG brand infringement (phishing) reduced from 45 hours to 7 hours Web-inject malware hosted in the UK reduced from 526 hours to 43 hours OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

12 Questions? https://www.ncsc.gov.uk/
OFFICIAL | Reducing Cyber Security Risks in UK Public Sector | December 2017

Download ppt "Reducing Cyber Security Risks in the UK Public Sector"

Similar presentations

Cyber Security & Critical Controls Chris Few Industry Enabling Services CESG February 2011 © Crown Copyright. All rights reserved.

Cyber Security & Critical Controls Chris Few Industry Enabling Services CESG February 2011 © Crown Copyright. All rights reserved.
Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.

Supplied on \web site. on January 10 th, 2008 Customer Security Management Reducing Internet fraud June 1 st, 2008 eSAC Walk Thru © Copyright Prevx Limited.
David A. Brown Chief Information Security Officer State of Ohio

David A. Brown Chief Information Security Officer State of Ohio
Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.

Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.
Prepare + Prevent + Respond + Recover + Mitigate START WITH PREVENTION Governor’s Office of Homeland Security & Emergency Preparedness (GOHSEP) Louisiana-State.

Prepare + Prevent + Respond + Recover + Mitigate START WITH PREVENTION Governor’s Office of Homeland Security & Emergency Preparedness (GOHSEP) Louisiana-State.
The Crown and Suppliers: A New Way of Working People & Security15:35 – 16:20 Channels & Citizen Engagement Social Media ICT Capability Risk Management.

The Crown and Suppliers: A New Way of Working People & Security15:35 – 16:20 Channels & Citizen Engagement Social Media ICT Capability Risk Management.
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.
UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.

UNDERSTANDING THE RISKS & CHALLENGES OF Cyber Security DAVID NIMMO InDepth IT Solutions DAVID HIGGINS WatchGuard NEIL PARKER BridgePoint Group A BridgePoint.
Staying Ahead of the Curve in Cyber Security Bill Chang CEO, SingTel Group Enterprise.

Staying Ahead of the Curve in Cyber Security Bill Chang CEO, SingTel Group Enterprise.
Prepared By, Mahadir Ahmad. StopBadware makes the Web safer through the prevention, mitigation, and remediation of badware websites. partners include.

Prepared By, Mahadir Ahmad. StopBadware makes the Web safer through the prevention, mitigation, and remediation of badware websites. partners include.
2011 / 9/11/2015 2 S V E Security for Virtualized Environments The first comprehensive security solution for.

2011 / 9/11/ S V E Security for Virtualized Environments The first comprehensive security solution for.
The impact of email-borne threats Why companies should recognise and embrace the need for change.

The impact of -borne threats Why companies should recognise and embrace the need for change.
Thomas Levy. Agenda 1.Aims: Reducing Cyber Risk 2.Information Risk Management 3.Secure Configuration 4.Network Security 5.Managing User Access 6.Education.

Thomas Levy. Agenda 1.Aims: Reducing Cyber Risk 2.Information Risk Management 3.Secure Configuration 4.Network Security 5.Managing User Access 6.Education.
BOTSWANA NATIONAL CYBER SECURITY STRATEGY PROJECT

BOTSWANA NATIONAL CYBER SECURITY STRATEGY PROJECT
APRICOT 2015 Security Day Cooperation between Security Teams and Network Operators: Actionable Intelligence on ShellShock Arnold S. Yoon Information Security.

APRICOT 2015 Security Day Cooperation between Security Teams and Network Operators: Actionable Intelligence on ShellShock Arnold S. Yoon Information Security.
10/14/2015 Introducing Worry-Free SecureSite. Copyright 2007 - Trend Micro Inc. Agenda Problem –SQL injection –XSS Solution Market opportunity Target.

10/14/2015 Introducing Worry-Free SecureSite. Copyright Trend Micro Inc. Agenda Problem –SQL injection –XSS Solution Market opportunity Target.
The Global Road Safety Partnership is hosted by Work Related Road Safety Ken Shaw – Global Road Safety Partnership Department of Disaster Prevention and.

The Global Road Safety Partnership is hosted by Work Related Road Safety Ken Shaw – Global Road Safety Partnership Department of Disaster Prevention and.
GSHRM Conference Cyber Security Education Shri Cockroft, CISO Piedmont Healthcare, Inc. September 21, 2015.

GSHRM Conference Cyber Security Education Shri Cockroft, CISO Piedmont Healthcare, Inc. September 21, 2015.
INFORMATION SECURITY GOVERNANCE READINESS IN GOVERNMENT INSTITUTION

INFORMATION SECURITY GOVERNANCE READINESS IN GOVERNMENT INSTITUTION
CERT cooperation with ISP’s on Cybersecurity C ă t ă lin P ă trașcu CERT-RO 29 October 2015 RONOG 2 Meeting1.

CERT cooperation with ISP’s on Cybersecurity C ă t ă lin P ă trașcu CERT-RO 29 October 2015 RONOG 2 Meeting1.

Similar presentations

Ads by Google