Department for Culture, Media and Sport
Printable version |
Top UK firms urged to get a cyber ‘health check’
Government urges the UK’s 350 largest businesses to take part in free 'health check to help them understand and improve their cyber security.
A Cyber Governance Health Check has been launched by Digital Economy Minister Ed Vaizey to help the UK’s biggest companies defend themselves against cyber attacks.
The UK’s 350 largest businesses - FTSE 350 firms - are being urged to take part in the free Cyber Health Check to help them understand and improve their level of cyber security. Companies will receive a confidential, tailored report enabling them to understand boardroom trends, compare themselves to their peers and address any weaknesses identified. The health check also generates aggregated data showing how well the top UK companies are performing.
Speaking at the Intel Security Summit in London, Digital Economy Minister Ed Vaizey said:
With more and more of our daily transactions done online, keeping our personal data safe is a top priority for this Government. Our Cyber Health Check will help the UK’s biggest firms strengthen their cyber security and ensure they continue to thrive in our growing digital economy.
Following last month’s cyber attack on TalkTalk, the Digital Economy Minister Ed Vaizey promised to write to the FTSE 350, reminding them of the steps that Government expects them to take and the robust procedures businesses need to have in place. Alongside the cyber health check, businesses are being urged to use the Government’s cyber security guidance and adopt the Cyber Essentials scheme, which protects organisations - both large and small - against common threats on the Internet.
This is the third annual Cyber Governance Health Check which has been offered by the Government and the audit community. The Cyber Health Check helps encourage behaviour change in how UK companies manage cyber risks, and helps make sure the risks of cyber attacks are considered not only in IT departments but also at company board level and in audit committees. This health check is part of the Government’s five-year £860m National Cyber Security Programme to protect the UK and make it one of the safest places in the world to do business online.
The 2014 health check data showed good progress being made:
- 88 per cent of FTSE 350 firms include cyber security in their risk register - up from 58 per cent in 2013; and
- 58 per cent of firms assess themselves against the Government’s 10 Steps to Cyber Security guidance - up from 40% in 2013.
Results from the 2015 health check will be published in early 2016.
Background
This announcement follows the Chancellor’s speech at GCHQ on 17 November 2015 where he announced £1.9bn funding for cyber security and a new National Cyber Centre.
Results from the 2014 Cyber Governance Health Check were announced on 16 January 2015 as part of the Prime Minister’s visit to the US to meet President Obama and discuss cyber security.
Digital Economy Minister Ed Vaizey’s statement to the House of Commons on data breaches on 26 October 2015 can be found on Parliament’s website.
The 10 Steps to Cyber Security guidance includes a version for small businesses.
The Government’s Cyber Essentials scheme sets out the five basic technical controls which will protect an organisation against the common threats on the Internet.