Earlier today, the United Kingdom's National Cyber Security Centre (NCSC) published their Annual Review for 2024.
Mike Maddison, CEO of NCC Group said:
“The NCSC’s 2024 Annual Review reveals the widening gap between the risks that the UK faces and its ability to handle them. Threat actors are highly innovative and are taking aim at higher value targets with a three-fold increase in the most serious cyber attacks compared to the previous year. In stark contrast, cyber security guidance and frameworks are often not put into practice making the UK an easier target in the face of ever more sophisticated threats.”
“We join the NCSC in calling for greater collective action to take responsibility in enhancing the UK's cyber resilience. It is imperative that business understands that this nation’s cyber security is our collective responsibility. We fully support creating the right market incentives and ensuring that responsibility is placed on the right shoulders to drive meaningful change. Our collaboration with industry partners to support the NCSC's objectives and enhance the UK's cyber security posture, as well as our global initiatives, are crucial in fostering international cyber security efforts and resilience.”
The NCSC Annual Review provides a comprehensive overview of the National Cyber Security Centre's activities, achievements and challenges over the past year. This year, the focus was on securing the future in an evolving cyber landscape, highlighting the NCSC's efforts to address emerging cyber threats, and ensure the UK remains at the forefront of cyber resilience.
The 2024 overview includes many initiatives that NCC Group is proud to have supported such as NCSC’s new approach to technology assurance Principles Based Assurance (PBA), the world-leading secondment initiative Industry100, the UK Government’s Vulnerability Reporting Service, and NCSC’s flagship annual event CYBERUK.
NCC Group is also pleased to have recently been listed as an assured service provider on NCSC’s Cyber Resilience Audit (CRA) Scheme, and remains committed to working with NCSC and government on the key new cyber laws and policies referenced in the Review such as the Pall Mall Process, updating the Computer Misuse Act and forthcoming Cyber Security and Resilience Bill.