Cybersecurity: A Team Endeavour for National Resilience by the NCSC

The Deputy Director for Government Cyber Resilience at the National Cyber Security Centre (NCSC) outlined the importance of collaboration in building cyber resilience across the UK. This took place at our Public Sector Cyber Security and Data Protection Conference. The NCSC is the UK’s leading authority on cybersecurity, but cybersecurity is a team sport, requiring cooperation between government bodies, industry partners, academia, and international allies.

Discover the Latest Public Sector Cyber Security Conference

Current Threat Landscape

The deputy director detailed the evolving cyber threat landscape, noting that cybercrime, particularly ransomware, remains the biggest day-to-day threat. However, state-sponsored cyber activities are on the rise, exemplified by Russia’s invasion of Ukraine, which has highlighted the capabilities of state actors. These state-aligned groups are becoming increasingly sophisticated and are not just focused on espionage but also on revenue generation and data theft.

Commoditisation of Cyber Capabilities

In the coming years, cyber capabilities are expected to become commoditised, making high-end tools available to a broader range of attackers. This shift means that states without the ability to develop these tools can now purchase them, widening the pool of potential cyber attackers.

State-Aligned Groups

They highlighted the emergence of state-aligned groups as a particular threat. These groups, motivated more by ideology than financial gain, operate with fewer constraints than traditional state actors, making them unpredictable and broadening their targets beyond conventional cybercriminal activities.

The Growing Impact of Cybercrime

Cybercrime, especially ransomware, has grown significantly since 2017. Organised crime groups have adapted their tactics, leading to a rise in ransomware-as-a-service, where even those with limited technical skills can launch attacks using pre-developed tools. These attacks can be devastating, affecting finances, compromising data, disrupting operations, and eroding trust.

NCSC’s Role and Resources

The NCSC offers numerous resources and guidance to help organisations build cyber resilience. This includes detailed advice on preventing ransomware and phishing attacks, as well as free tools and services like the Early Warning Service, which alerts organisations to detected malicious activity.

Importance of Training and Staff Welfare

Training staff to handle cyber incidents is crucial. They emphasised that no two attacks are the same, and having well-prepared staff is vital. The NCSC operates a 24/7 incident management team to support victims of serious cyber-attacks. However, the stress and long hours associated with managing these incidents can take a toll on staff, making it essential to have plans in place to ensure their welfare.

Building a Resilient Future

They concluded by urging organisations to invest in cyber resilience measures. The NCSC provides comprehensive guidance, including the Cyber Assessment Framework (CAF), which offers a systematic approach to managing cyber risks. While the NCSC and government play a key role, they stressed that only through partnership with industry and other stakeholders can the UK effectively tackle cyber threats. In summary, the address underscored the critical need for a collaborative approach to cybersecurity, leveraging the combined strengths of government, industry, and international partners to build a resilient and secure digital landscape.

Discover our Public Sector Cyber Security Conference

Join us at The Public Sector Cyber Security Conference 2025 to receive the latest updates on the threat landscape. Discover the strategies and tactics required to successfully defend your organisation against attacks. Share experiences with your peers around the UK. Find the partners and solution providers you need to meet your challenges and stay secure.

References