The Government will today announce a new Anti-cyber threat centre following a successful pilot in 2012. The intiative will include experts from government communications body GCHQ, MI5, police and businesses with the aim of sharing information on cyber threats including the technical details of an attack, methods used in planning it and how to mitigate and deal with an attack.
The new London based centre will contain around 12-15 analysts to monitor attacks and provide details in real-time of who is being targeted.
Businesses are by far the biggest victims in terms of industrial espionage and intellectual property theft
Cabinet Office minister Francis Maude said: “We know cyber attacks are happening on an industrial scale and businesses are by far the biggest victims in terms of industrial espionage and intellectual property theft, with losses to the UK economy running into the billions of pounds annually.”
“This innovative partnership is breaking new ground through a truly collaborative partnership for sharing information on threats and to protect UK interests in cyberspace.”
How can businesses mitigate the threat of industrial espionage and intellectual property theft?
Companies are always nervous of revealing publicly when they have been attacked because of the potential impact on reputation and share price if they are seen as having lost valuable intellectual property or other information.
Rather than burying their head in sand or keeping this information secret, the Anti-cyber threat centre, I’m sure, will depend on organisations willingly sharing this information. The biggest problem though, is that many organisations don’t even know when they have been hacked, or even what their risk of attack actually is.
A penetration test or ‘pen test’ is the easiest, most effective way, to demonstrate that exploitable vulnerabilities in your Internet-facing resources are adequately patched, and that you have appropriate technical security controls in place to help protect against cyber-intrusions.
By utilising the services of an ‘ethical hacker’, organisations will be able to:
- To find weaknesses in their information security system before someone else does, identifying vulnerabilities and quantifying their impact and likelihood of being exploited;
- Produce evidence in the form of reports that their security measures are adequate and working, demonstrating that their IT spend is appropriate and cost-effective;
- Ensure compliance with critical standards such as PCI DSS and ISO27001, the requirements of the Data Protection Act and other relevant privacy legislation/regulations;
- Provide assurance to customers, both in a B2C and B2B context, that their data is being protected and that the organisation is not a weak link in their information security chain.
To provide your business with a complete solution, please see the IT Governance Penetration Testing Packages for further details.
To book your Penetration Testing service, or to discuss your requirements, – please call us now on 0845 070 1750 or email us.