Jump to content

UK cyber security community

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by Widefox (talk | contribs) at 15:02, 5 May 2016 (References: ref cols). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

The cyber security (or information assurance) community in the UK is diverse, with many stakeholders groups contributing to support the UK Cyber Security Strategy.[1] The following is a list of some of these stakeholders.

Trade associations and industry groups

ADS
ADS is a trade organisation for companies operating in the UK aerospace, defence, security and space industries.[2]

Crypto Developers Forum
The CDF promotes the global interests of the UK crypto development industry.[3]

Information Assurance Advisory Council
The IAAC works across industry, government and academia towards ensuring the UK’s information society has a robust, resilient and secure foundation.[4] The IAAC was set up by Baroness Neville-Jones who chaired the organisation until 2007,[5] handing over to the current chairman Sir Edmund Burton. The 2012/13 work programme is focused on consumerisation and its effects on information assurance.

Information Assurance Collaboration Group
The IACG was formed following the UK's national IA conference in 2006.[6] The IACG encourages greater collaboration between the commercial supply base for information assurance products and services operating within the UK public sector.[7] Stakeholders include CESG, BIS, the Office of Cyber Security and Information Assurance (OCSIA), Cyber Security Operations Centre (CSOC),[8] and the CPNI. The group maintains the UK information assurance community map,[9] hosted on the CESG's web site. It has two co-chairs: Colin Robbins of Nexor and Ross Parsell of Thales.
NDI UK
NDI is a former Government funded organisation building supply chains for the MOD and manufacturers using SME's in the United Kingdom.[10]

techUK
techUK, formerly known as Intellect, is the UK trade association for the technology industry.[11] It has a Cyber Security Group focused on “high threat” areas - including defence, national security and resilience, the protection of critical national infrastructure, intelligence, and organised crime, chaired by Dr Andrew Rogoyski of Roke Manor Research.[12] The Security and Resilience Group works to build strong relationships between the technology industry and policymakers, customers and end users, chaired by Stephen Kingan of Nexor.[13]

UK Council for Electronic Business
UKCeB is a not-for-profit, membership organisation whose mission is to transform secure information sharing for through life collaboration in defence acquisition and support.[14]

Government

CESG
CESG (originally Communications-Electronics Security Group) is the branch of GCHQ which works to secure the communications and information systems of the government and critical parts of UK national infrastructure.
Centre for the Protection of National Infrastructure
CPNI is the United Kingdom government authority which provides protective security advice to businesses and organisations across the national infrastructure.
Get Safe Online
Get Safe Online is a United Kingdom-based campaign and national initiative to teach citizens about basic computer security and internet privacy.
National Crime Agency
The NCA hosts the law enforcement cyber crime unit, incorporating the Child Exploitation and Online Protection Centre.
National Security Council
The National Security Council is a Cabinet committee tasked with overseeing all issues related to national security, intelligence coordination, and defence strategy.
Office of Cyber Security and Information Assurance
The OCSIA supports the Minister for the Cabinet Office, the Rt Hon Francis Maude MP and the National Security Council in determining priorities in relation to securing cyberspace. The unit provides strategic direction and coordinates action relating to enhancing cyber security and information assurance in the UK. The OCSIA is headed by James Quinault.[15]
Trustworthy Software Initiative
The Trustworthy Software Initiative (TSI)[16] is a UK Public Good activity, sponsored[17] by the UK government's Centre for the Protection of National Infrastructure, aimed at Making Software Better.
WARP
Warning, Advice and Reporting Points (WARPs) provide a trusted environment where members of a community can share problems and solutions.[18]

Professional bodies

British Computer Society
The BCS is a professional body and a learned society that represents those working in information technology both in the United Kingdom and internationally. It has a security, data and privacy group.[19]
Business Continuity Institute
The BCI was established in 1994 to enable individual members to obtain guidance and support from fellow business continuity practitioners.
Council of Registered Ethical Security Testers (CREST)
Information Systems Security Association
The ISSA is a not-for-profit, international professional organization of information security professionals and practitioners. There is a UK Chapter.[20]
Institute of Information Security Professionals
The IISP is an independent, non-profit body governed by its members, with the principal objective of advancing the professionalism of information security practitioners and thereby the professionalism of the industry as a whole.
ISACA
ISACA is an international professional association that deals with IT governance. Previously known as the Information Systems Audit and Control Association.
(ISC)²
(ISC)² is the International Information Systems Security Certification Consortium is a non-profit organization which specializes in information security education and certifications.
Tigerscheme
[21] Tigerscheme is a commercial certification scheme for technical security specialists, backed by University standards and covering a wide range of expertise. Tigerscheme is CESG certified in the UK and candidates are subject to an independent rigorous academic assessment authority. Tigerscheme was founded in 2007 on the principle that a commercial certification scheme run on independent lines would give buyers of security testing services confidence that they were hiring a recognised and reputable company. In June 2014 the operational authority for Tigerscheme was transferred to USW Commercial Services Ltd

Academic

Academic Centres of Excellence in Cyber Security Research[22]
University of Bristol, Imperial College London, Lancaster University, University of Oxford, Queen's University Belfast, Royal Holloway, University of Southampton, University College London.
University of South Wales, Information Security Research Group (ISRG).[23]
The ISRG is a multidisciplinary team of academics and industrial experts focusing upon cyber security. In particular the group is focusing upon: a) Network Security, b) Intrusion Detection and Wireless Security, c) Penetration Testing and Vulnerability Assessment, d) Computer Forensics and Digital Evidence Visualisation, and Threat Assessment and Risk Management.
De Montfort University Cyber Security Centre
The Cyber Security Centre (CSC) is a multidisciplinary group of academics who focus on a wide variety of cyber security and digital forensics issues. The Centre's mission is to provide the full benefits to all of a safe, secure and resilient cyberspace.[24]

References

  1. ^ "UK Cyber Security Strategy".
  2. ^ "ADS".
  3. ^ "CDF".
  4. ^ "IAAC".
  5. ^ "IAAC - Neville-Jones".
  6. ^ "Establishment of the IACG". National Archives.
  7. ^ "IACG Overview".
  8. ^ "CSOC".
  9. ^ "IA Community Map" (PDF).
  10. ^ "NDI UK".
  11. ^ "techUK".
  12. ^ "Intellect Cyber Security".
  13. ^ "Intellect Defence & Security".
  14. ^ "UK CeB".
  15. ^ "OCSIA".
  16. ^ UK Trustworthy Software Initiative, retrieved 4 January 2014
  17. ^ Protecting and promoting the UK in a digital world: 2 years on – Government Press Release, retrieved 12 December 2013
  18. ^ "WARP".
  19. ^ "BCS Security".
  20. ^ "ISSA UK".
  21. ^ Template:Tiger-scheme UK
  22. ^ "Academic Centers of Excellence". CESG.
  23. ^ "ISRG".
  24. ^ "DeMontFort Cyber Security Centre".