- Technological change and geopolitical tensions present “tumultuous uncertainty” requiring culture shift in approach to cyber defence, says head of UK cyber agency
- All organisations urged to follow advice to make cyber security part of their mission, as cyberspace sits in state “between peace and war”
- Threat picture ever more contested, with majority of significant incidents handled by National Cyber Security Centre coming from attackers linked to nation states
The head of the UK’s cyber agency is expected to say that the country is facing a “perfect storm” for cyber security against the backdrop of a new “technological revolution” in a major speech today (Weds, 22nd April).
Dr Richard Horne, the CEO of the National Cyber Security Centre, a part of signals intelligence agency GCHQ, will say that the meeting of rapid technological change driven by developments in AI and geopolitical tensions are giving rise to a period of “tumultuous uncertainty”.
Speaking to the CYBERUK conference in Glasgow, Dr Horne will say that as the technology landscape develops, the definition of cyber security is expanding with it.
In the future, it will be vital to secure technology that will control robotics, autonomous systems and technology that is physically integrated with human bodies – all of which is “way beyond” the definition of cyber security as it was understood and practised a decade ago and will require organisations to continually reimagine cyber security.
He will call on those working in the field to lead a “cultural shift” within organisations, adding that, amidst the uncertainty, it is clear what actions need to be taken to maintain collective resilience. Dr Horne is expected to say that;
cyber security is the responsibility of everyone, whether they sit on the Board or the IT help desk… cyber security is part of their mission.
Dr Richard Horne, CEO, NCSC
Dr Horne will go on to say that “organisations that do not focus on their technology base…as core to their prosperity … are no longer just naïve but are failing to grasp the reality of today’s world.”
Speaking about the cyber threat landscape, Dr Horne will say that the number of incidents dealt with by the NCSC remains “fairly steady”. However, there has been a change in where the attacks are coming from as “the majority of the nationally significant incidents that the NCSC is handling now originate directly or indirectly from nation states.”
Dr Horne is also expected to outline that cyberspace is part of the contested space “between peace and war”. He will outline that the UK’s cyber agency is seeing Russia applying lessons it has learnt on the battlefield in the illegal invasion of Ukraine and “moving them beyond the battlefield.”
He will say that conflicts around the world in the past year have shown that “cyber operations are now integral to conflict” and that “cyber security is the home front”.
Addressing the recent discussion about new frontier AI models, Dr Horne will say;
frontier AI is rapidly enabling discovery and exploitation of existing vulnerabilities at scale, illustrating how quickly it will expose where fundamentals of cyber security are still to be addressed.
Dr Richard Horne, CEO, NCSC
As the UK’s national technical authority on cyber security, the NCSC provides a wealth of practical advice, guidance and tools to help organisations and individuals protect themselves from online threats and raise their cyber resilience, available at ncsc.gov.uk
