Intel Security and the Digital Government Security Forum (DGSF) announced the launch of the latest DGSF Report on the Future of Information Security in Government and Public Services.
The report looks at the fast changing digital world, which promises to transform how our government and public services operate.
It indicates that government and the wider public services will place increasing reliance on robust information security as public sector organisations continue exploiting developments in technology and digital information.
But information security needs to support this opportunity if we are to see the benefits of the digital revolution that the Government, public services and the NHS will face over the next decade.
Information security will become even more important. Sophisticated cyber gangs already perceive governments and healthcare organisations as a prime target for cyberattacks, cyber extortion and ransomware.
The report identifies five key issues for the future.
- Combatting Sophisticated Attackers
- Speed of Response
- Responding to the increasing complexity of the modern IT Estate
- Addressing Skills and People Issues
- Reacting to the Internet of Things
The report calls for a change of mind-set from ‘incident response’ to ‘continuous detection and response’, from ‘fire brigade’ to ‘detectives’.
At present information security tends to be very fragmented as it has been developed and implemented on a tactical basis reacting to new developments and changes in types of threats. As a result, it is generally silo-based and this creates opportunities for threat actors to exploit the gaps and overlaps between the silos. Technology and threats are changing faster than many security policies and controls.
‘We need to be thinking now about the security and data sharing implications of the ways that we will work in the future. This includes not just near term issues like cloud computing and social media, but also longer term developments such as automated systems for enquiry handling and even driverless vehicles’ says John Thornton of the DGSF.
The Report identifies seven key components that are needed to build functional capability.
Minimising the impact of cyber-attacks is a business objective that must be owned and implemented corporately. ‘People’ and ‘skills’ must be seen as essential components in the security mix, which is why they sit at the heart of the Report’s proposals for Building Function Capability.
The Report is published as a ‘discussion draft’ designed to stimulate debate about the Future of Information Security across the Public Services.
To download the Executive Summary visit: Downloads – The Future of Information Security
Members of the DGSF can download the full report. To enquire about joining as a DGSF member email: info@DigitalGovernmentSecurityForum.org or you can register via the website using the membership button (top right).
Notes: The study was conducted between July and October 2015. It has been supported by Intel Security, including providing background information, facilitating interviews with key Intel Security employees and assisting with the review process. Intel security has not sought to influence the content or findings, and whilst drawing on the company’s expertise, the report is entirely independent of Intel Security.
About the DGSF:
The aim of the Digital Government Security Forum (DGSF) is to bring together senior individuals from across government and the wider public sector to:
- Explore the cyber risks confronting government and the public services, including the risks associated with key government policies
- Share case studies of how technology has been used to solve strategic security issues
- Share practical guidance on managing and mitigating information and cyber security risks
Membership of the Forum is open to senior practitioners working in the field of information security together with senior managers, policy coordinators and influencers whose broader responsibilities include information security. This includes chief executives, director generals, directors of finance and chief information officers.
Forum members can attend events free of charge; view and comment on draft publications and consultation documents; and receive Forum publications and newsletters.
To qualify for membership you will need to be a working in a senior position in government, defence, the emergency services, local government, healthcare or the wider public services and have a dot.gov or nhs email address.
About Intel Security
McAfee Labs is now part of Intel Security. With its Security Connected strategy, innovative approach to hardware-enhanced security, and unique McAfee Global Threat Intelligence, Intel Security is intensely focused on developing proactive, proven security solutions and services that protect systems, networks, and mobile devices for business and personal use around the world. Intel Security is combining the experience and expertise of McAfee with the innovation and proven performance of Intel to make security an essential ingredient in every architecture and on every computing platform. The mission of Intel Security is to give everyone the confidence to live and work safely and securely in the digital world. www.intelsecurity.com.
No computer system can be absolutely secure.
Note: Intel, Intel Security, the Intel logo, McAfee and the McAfee logo are trademarks or registered trademarks of Intel Corporation in the United States and other countries. *Other names and brands may be claimed as the property of others.