- Three days of talks begin with like-minded nations as the UK calls for a renewed focus on tackling global cyber threats and boosting cyber skills
- To plug skills gap, a new scheme will be launched to fund cyber training in England and Northern Ireland
- Comes ahead of new laws to better protect the UK from cyber-attacks and follows decision to classify data centres as Critical National Infrastructure (CNI)
The UK will convene leading nations including the US and EU for talks on how to tackle the growing threat of cyber-attacks, as new figures show nearly half of British businesses do not have the skills needed to protect against cyber-crime.
Taking place at Wilton Park in West Sussex, the discussions come at a critical time following recent high-profile incidents - including the global IT outage, an attack impacting NHS service providers, and attempts to disrupt London's transport network.
Over the next three days countries including the EU member states, Canada, Japan and international organisations such as the World Economic Forum (WEF) and the Organisation for Economic Co-operation and Development (OECD) will discuss how global cyber security workforces can be strengthened, from agreeing ways to boost cyber skills to developing new professional standards.
To help this effort, the UK will commission a new report, with attendees set to agree key areas it should focus on. The recommendations are expected to be published by the end of the year and will advance international collaboration to improve cyber skills and face down cyber-crime.
Taking more immediate action, the UK government is also launching a new scheme to deliver tailored support across regions of England and Northern Ireland. By tapping into local know how, the move will fund initiatives which will directly address the cyber skills needs of individual areas - whether it's through apprenticeships or companies developing new forms of cyber security.
It follows the government's decision to designate data centres as Critical National Infrastructure (CNI) alongside energy and water systems, which will bolster the UK's security and allow the government to support the sector in the event of critical incidents. Supporting UK cyber skills will also boost the £11.9 billion cyber security industry and help protect growth in the UK economy.
Cyber Security Minister Feryal Clark said:
The UK needs a significant improvement in its cyber defences after the previous government failed to strengthen our cyber laws - we're fixing that.
Later this year, we'll bring forward new measures to better protect the nation from cyber-crime and our new regional skills programme will support the next generation of cyber talent and innovators.
But this is a shared challenge, which is why we're bringing together global allies to discuss and agree steps to keep us safe online, improve cyber skills and protect our economy and public services.
A total of £1.3 million is being made available for organisations such as universities, local councils and businesses to provide cyber skills training, and fund organisations developing new innovations in cyber defence across Northern Ireland and England. Delivered by Innovate UK, applications for the scheme open today and will see grants of up to £150,000 awarded to winning applicants by March 2025.
Alongside this, the UK government has also launched a competition to find the best young cyber talent to represent the UK on the international stage.
The event demonstrates the UK's leadership in bringing likeminded countries together to discuss one of the biggest threats facing nations around the world today. It's hoped it will firmly place cyber on the global agenda and become a regular fixture - with other nations expected to host going forward.
To mark the opening, the UK has published the latest figures from its Cyber Security Skills in the UK Labour Market Survey. The findings show that while the estimated annual shortfall for jobs in the UK's cyber workforce has reduced - down from 11,200 last year to just 3,500 this year - 44% of UK businesses do not have the fundamental skills to protect themselves from cyber-attacks.
The figures highlight the need for further targeted action to ensure the UK's cyber security workforce can continue to develop a rich pipeline of diverse talent to help keep the nation safe online in the years to come - which the new regional skills programme will help to address.
To further bridge the global cyber skills gap, the UK is also teaming up with CREST International - a non-profit organisation representing standards in the global cyber security community - to launch the CREST Cyber Accelerated Maturity Programme (CAMP).
This Foreign, Commonwealth and Development Office (FCDO) sponsored scheme will provide mentoring to cyber service providers to develop their capabilities, experience and skills in line with CREST's standards, and bolster training. Countries in Europe, Africa, South-East Asia, and the Middle East have been invited to join as founding partners.
The UK government is taking swift action to address vulnerabilities and protect the nation's digital economy to deliver growth, by bringing forward the Cyber Security and Resilience Bill. This will strengthen the UK's cyber defences, ensure that critical infrastructure and the digital services that companies rely on are secure.
Notes
Countries and organisations in attendance
- Australia (Australian Public Service Commission)
- Canada (Canadian Centre for Cyber Security)
- Government of Dubai (Dubai Electronic Security Center)
- European Union (European Union Agency for Cybersecurity)
- Ghana (Cyber Security Authority)
- India (Ministry of Electronics and Information Technology)
- Italy (National Cybersecurity Agency)
- Ireland (National Cyber Security Centre is a government computer security organisation in Ireland)
- Japan (Embassy)
- Oman (Advanced Cybersecurity Academy, Centers for Disease Control)
- Singapore (Cyber Security Agency of Singapore)
- United States (National Institute of Standards and Technology, Cybersecurity and Infrastructure Security Agency)
- Republic of Korea (Ministry of Science and ICT)
- African Union
- United Kingdom (Department for Science, Innovation and Technology, Foreign, Commonwealth and Development Office, National Cyber Security Centre)
Other organisations involved
- BAE Systems
- BT Security
- CyberSafe Foundation
- World Economic Forum (WEF)
- Organisation for Economic Co-operation and Development (OECD)
- Global Forum on Cyber Expertise (GFCE)
- International Telecommunication Union (ITU)
- Protection Group International (PGI)
- TechUK
- UK Cyber Security Council
Certification bodies
- International Information System Security Certification Consortium (ISC2)
- Computing Technology Industry Association (CompTIA)
- CREST
- SANS
- Global Information Assurance Certification (GIAC)
- Information Systems Audit and Control Association (ISACA)
Representatives from the academic community such as University of Manchester, Southampton and Oxford.