Documents to download

In the UK, cyber is categorised as a high priority risk to national security. Cyber threats come both from nation states and from criminal individuals or groups. The Government states that the lines between different threat actors continue to blur as individuals and groups learn from, hire and work with one another. Cyber threats to the UK include cyber terrorism; fraud and serious organised crime; espionage; and disruption of critical national infrastructure (CNI).

In November 2016, the Government published its five-year National Cyber Security Strategy, and made a commitment to invest £1.9 billion in cyber security. The strategy set out the Government’s implementation plan under three objectives: to defend the UK from cyber-attacks; to deter potential attackers; and to develop an innovative cyber security industry underpinned by leading scientific research and development. Cyber security of the UK’s CNI was listed as a priority. In 2016, the Government also created the National Cyber Security Centre. It supports the most critical organisations in the UK, the wider public sector, and industry.

The UK has committed to work in close collaboration with its international allies, including its partners in NATO and as a member of the EU, to improve international cyber security. In May 2018, the UK implemented the EU Networks and Information Security Directive and placed legal obligations on operators of UK critical services to improve cyber-security. The Government has said that after the UK’s exit from the EU it wants to protect its cyber cooperation with the EU.

This briefing focuses on the UK Government’s response to the global cyber threat in the context of its strategies on national security and on national cyber security. It includes an overview of the Government’s policy to improve the resilience of the UK’s CNI to cyber-attack, and measures to address the shortage in cyber security skills in that area. The last section briefly discusses NATO’s and the EU’s cyber security initiatives and the recent allegations against the Russian intelligence service.

Documents to download

Related posts

  • Medicinal and agrochemical products can be granted a Supplementary Protection Certificate, an intellectual property right associated with patents, to provide up to five years of additional rights and protections once their patents have expired. In order to apply for an SPC, a product must receive approval to be sold on the UK market. Under the Northern Ireland/Ireland Protocol, products to be sold in Northern Ireland must obtain approval under EU law, whilst products to be sold in the rest of the UK will obtain approval under UK law. Currently, this marketing authorisation is only given on a UK-wide basis. This regulation amends the market authorisation process to enable authorisations to be granted for the Northern Ireland market only and for the Great Britain market only.

  • The regulation of product safety, and weights and measures, is based on EU law. The European Union (Withdrawal) Act 2018 brings this EU law into UK statute, so that it will continue to have effect after the end of the transition period. Amendments since have made to enable this framework to operate smoothly in the UK, and added provisions such as a UK conformity mark. This article looks at a further statutory instrument that amends retained EU law in the area, particularly in light of the Northern Ireland Protocol.