Welcome to the May edition of the Cyber Exchange newsletter. While COVID-19 continues to disrupt organisations across the UK, the need for strong security practices continues to be at the top of the agenda.
Over the last month, DCMS have provided information and support for the cyber security sector and DCMS and techUK have compiled a Cyber Security Training and Skills Repositoryto help organisations upskill their workforce while we are all working from home. There are also a number of competitions with funding deadlines looming including, HutZero 6, Cyber 101, and Innovate UK funding for projects tackling cyber security IoT challenges. The deadline for each of these funding competitions is before the end of May.
As ever, if you have an opportunity or event you would like to publish on the website, please get in touch with Sam Wyatt, Programme Manager for Defence and Cyber at techUK atSam.Wyatt@techuk.org. We can also be contacted on Twitter and LinkedIn.
HutZero kicks off with an intensive five-day bootcamp jam-packed with workshops on technical development, business fundamentals and team building. After the London bootcamp, participants will be able to receive guidance and mentoring from HutZero staff and sponsors over a 3 month period. Participants will be encouraged to continue to work on their ideas in their newly-formed teams, and will be invited to reunite for an alumni event at the end of the 3 months to share their successes.
The Cyber 101 programme offers intensive one day Bootcamps followed by deep dive sessions highlighting key business challenges and an annual demo day where selected startups will pitch their Cyber Security solution to potential customers, partners and investors.
UK businesses can apply for a share of up to £4m for collaborative R&D projects addressing major cyber security challenges in the IoT. The aim of this competition is to solve industry-focused major cyber security-related challenges in the IoT.
On Wednesday 20 May, techUK will host a briefing looking at Cyber Security for Connected Autonomous Vehicles. At this panel, there will be discussion of legacy systems and interference with other cars, cyber security mitigation measures and the security of non-personal data.
On Thursday 28 May, techUK will host a workshop and roundtable for members involved with emerging and transformative technologies to explore building a security first approach to edge adoption and to create recommendations for this transition.
From Tuesday 2 June to Thursday 4 June, Infosecurity Europe has put together a three day webinar programme to keep attendees informed and engaged about pressing issues in cyber security. There will be three primary themes throughout the conference; Resilience, the human factor and strategic planning, with each day focusing on a different theme.
On Wednesday 17 June, AKJ Associates will host the 15th e-Crime & Cybersecurity DACH. As the entire business goes off-premise, how should CISOs react? What are the key priorities? How do CISOs ensure that they and their teams are secure as well as key employees and business processes? What is the initial response versus the longer-term? The 15th e-Crime and Cybersecurity DACH will take place online and look at how cybersecurity teams are tackling this dramatically different threatscape. The event will have real-life case studies and in-depth technical sessions from the security and privacy teams behind some of the worlds most admired brands.
On Thursday 25 June, the University of Chester will host the 19th European conference on cyber warfare and security. This conference attracts an interesting combination of academic scholars, military personnel, practitioners and individuals who are engaged in various aspects of the cyber security community. ECCWS is generally attended by participants from more than 30 countries. The Journal of Information Warfare regularly publishes a number of the papers presented at this conference.
The Cyber Security EXPO will be hosted at the Aerospace Bristol on Thursday 3 September. The EXPO gives attendees the opportunity to meet with hiring managers and recruitment agencies. If you already work in Cyber Security or are looking to work within the Cyber Security industry, the event gives you the opportunity to meet with employers face-to-face.
The Richmond Cyber Security Forum on 15th September will include a first class, CPD accredited conference programme of keynotes, interactive workshops, think tanks and personal development sessions. The opportunity to connect and engage with industry peers in a relaxed informal setting and the chance to discover what’s available in the market place in pre-scheduled meetings of your choice.
On Wednesday 23 September, the annual GovSec conference will take place. The conference aims to enable the government to function effectively, safely and securely through improved IT and information security to protect the vital services provided by the central government, local councils and the NHS.
How to ensure business continuity in the face of coronavirus: your weekly update on the latest guidance and intelligence around the employment, tax, and financial implications of operating during the COVID-19 outbreak.
This week you’ll get access to the latest guidance and information on the cyber security landscape, including:
- Current COVID-19 cyber threats
- Latest guidance issued by NCSC
- Update on the government-backed Cyber Essentials scheme
You will also get an update on the government’s furlough scheme, which has now been extended until the end of October. We will explore what the modified version of the scheme may look like, and what other options may be open to employers in structuring their workforce after the scheme changes at the end of July.
You’ll have the opportunity to ask questions throughout the live session. If you have some questions in mind, please send them over email ahead of the webinar.
- Fiona Geskes, Principal Policy Advisor, Tax and Fiscal Policy, CBI
- Stefan Martin, Partner, Hogan Lovells (guest speaker)
- Representative from the National Cyber Security Centre (guest speaker)
- Deborah Fraser, Director – Regions, CBI (chair)
event – 18 May 2020, 15:30 – 16:15
signup – https://register.gotowebinar.com/register/2238353192894384912
The Department for International Trade (DIT) has launched a COVID-19 Webinar series to help UK SMEs.
Our experts will provide guidance and practical advice to help support your business and respond to the challenges and potential disruption caused by COVID-19. There will also be an opportunity for Q&As where you can put your questions directly to our experts.
All webinars are free to UK companies – register now to attend.
How long are the webinars?
- Our experts usually present for 25 minutes and allow 35 minutes to answer your questions and help you find solutions to any barriers you may be facing.
Each link below will connect you to a webinar registration form where you can find out more about each webinar and receive your unique link to join the upcoming webinar.
Routes to market
Thursday 14 May 2020, 10:00 – 11:00
Delivered by Rob Lewtas, DIT South East and Tom Dixon from DIT’s E-Exporting Programme Team .
Logistics and movement of goods during COVID-19
Wednesday 20 May 2020, 10:00 – 11:00
Delivered by Veronica Dawson, an International Trade Advisor at DIT and Alex Veitch from the British Freight Transport Association.
Risk management when considering new markets
Thursday 21 May 2020, 10:00 – 11:00
Delivered by Lee Hibbert, an International Trade Advisor at DIT.
Managing disruption of supply chains during COVID-19
Friday 22 May 2020, 14:30 – 15:30
Delivered by Terser Adamu, an International Trade Advisor at DIT and Chris Walker from the Federation of Small Businesses.
You can find all of DIT’s upcoming webinars here.
Do you work in, or do you have connections with a local school?
NCSC would like your help to bring as many schools as we can into this crucial programme.
Discover what the CyberFirst Schools Programme is doing for young people interested in cyber security.
Since 2018, the NCSC has been piloting a Cyber Schools Hub (CSH) programme in Gloucestershire. The CSH has encouraged collaboration between local schools, the National Cyber Security Centre (NCSC), national and local companies and organisations who share the aim of encouraging young people to engage with computer science and the application of cyber security in every day technology.
The CSH pilot has proved to be successful at a local level and the NCSC now wishes to increase the scale of ambition and formally recognise schools who are committed to providing a structured approach to excellence in cyber security education.
The CyberFirst Schools Programme will initially be limited to schools in Gloucestershire and Wales.
Young people are encouraged to join online classes to develop problem-solving and cyber skills
Published 1 May 2020
From: Department for Digital, Culture, Media & Sport, National Crime Agency, National Cyber Security Centre, and Matt Warman MP
Teens can learn how to crack codes, fix security flaws and dissect criminals’ digital trails
Comes as National Cyber Security Centre (NCSC) launches CyberFirst summer courses online
Thousands of young people are being offered the chance to join a virtual cyber security school as part of plans to make sure the country develops the next generation of professional cyber defenders.
At a time when schools remain closed to most children, the online initiative aims to inspire future talent to work in the cyber security sector and give students a variety of extracurricular activities to do from the safety of their homes.
Teens can learn how to crack codes, fix security flaws and dissect criminals’ digital trails while progressing through the game as a cyber agent. This will help them develop important skills needed for future jobs, particularly in cyber security.
The school provides free weekly webinars run by industry experts teaching fundamental security disciplines such as digital forensics, cryptography and operating systems.
Digital Infrastructure Minister Matt Warman said:
This new initiative will give teenagers something fun and educational to do from home and provide them with a glimpse into the life of a cyber security professional.
We have a world-leading cyber sector which plays a crucial role protecting the country and our digital economy, so it is absolutely vital we continue to inspire the next generation of tech talent to help maintain the UK’s strong position.
The move comes as the government announces a number of other online training courses to give UK school pupils the opportunity to learn and develop cyber security skills, this includes the launch of the National Cyber Security Centre’s (NCSC) hugely popular CyberFirst summer courses. The courses are moving online this year to help more than a thousand 14 to 17-year-olds develop important cyber skills from home during the coronavirus pandemic.
NCSC Chief Executive Officer Ciaran Martin said:
Technology is helping us all cope with the coronavirus crisis and is playing an essential role in keeping our businesses moving and our society connected.
It has never been more important for our young people to keep engaged and learn how to protect our digital world – and I’m delighted to see our instructor led CyberFirst summer courses made available online.
Enrolled students will learn how to code and carry out cybersecurity operations in an instructor-led virtual classroom to help guide the students through the programme and build a sense of camaraderie within each cohort.
The National Crime Agency and Cyber Security Challenge UK will also this week announce teenagers can access their online cyber skills platform CyberLand for free during the coming months. In the game designed to teach teenagers the fundamentals of cyber security, players protect the virtual city ‘CyberLand’ from cyber attacks while learning key skills.
Deputy Director at the NCA’s National Cyber Crime Unit Jim Stokley said:
Many young people have a keen interest in technology and have developed impressive cyber skills.
The virtual cyber school and CyberFirst programmes are great initiatives which will support this next generation of cyber defenders in realising their potential.
We’ve also partnered with Cyber Security Challenge UK to offer free access to their online platform Cyberland where young people will find games that encourage them to improve cyber skills safely and legally.
Computer science teacher & EdTech evangelist Mark Martin said:
This is a great initiative to encourage young people to consider future careers in cyber security and see that they can have a tech job keeping people safe online.
The virtual cyber school will help students learn valuable skills needed to work in the industry in a fun and entertaining way. I encourage teachers to share these programmes with their students as a productive activity to do in their spare time from home.
Cyber Discovery provider SANS Chief Technology Officer James Lyne said:
Cyber security is a fascinating field packed with opportunities for innovation and to make the online world more secure. It spans every part of society and has a huge role in our future security and technology prospects as a nation.
This is your chance to learn how to ‘forensicate’ like a digital Sherlock Holmes, close down vulnerabilities before the hackers find them, and break codes.
Teachers, parents, students – get online and take advantage of this wonderful opportunity amidst the unique and challenging situation our country faces right now.
CyberFirst provider QA Chairman Sir Charlie Mayfield said:
These initiatives from NCSC and DCMS are set to deliver a great summer of learning for young people across the UK. There is a shortage of digital skills in the UK and the CyberFirst programmes tackle this issue head on – and have the added benefit of keeping young minds active at this difficult time.
The road to the UK’s economic recovery from this pandemic will be built on the skills we learn at this time. That’s why it was critical that initiatives like CyberFirst were pivoted to virtual delivery, so they could go ahead as planned. We are proud to partner with the NCSC to deliver these fully virtual training programmes.
Event: Office Hours for Female Founders with Playfair Capital
From Playfair Capital: Our third, remote edition of our collaborative Female Founder Investor Office Hours builds on the success of our events in February 2020 and November last year.
This time, we’re going fully remote to broaden access to female founders across the country, supported by Tech Nation and 30 investors from the UK’s leading VCs alongside the Playfair Capital team.
The primary aim of this initiative is mentorship & support, and secondary is fundraising. We hope that with time, the two will go hand-in-hand.
We welcome applications from any UK-based female founder whose business is tech and pre-Series A. We will do our best to accommodate as many founders as possible and provide support to all regardless. Applications will close at midnight on Sunday 24th May.
Event: Storytelling for Startups
I previously hosted Martyn for him to deliver his two-part workshop: Storytelling for Startups and Ideas to Say Yes to. The feedback from those workshops was exceptional and Martyn is running them again, this time online and with Barclays.
Part one is happening tomorrow: https://www.eventbrite.co.uk/e/storytelling-for-startups-tickets-102674000700
Event: Deloitte: Operational resilience in high growth companies: Practical considerations for senior leaders working within finance, compliance and risk
From the event page:
“As the UK continues its lockdown, we are pleased to invite you to join our next webinar for high growth, tech-enabled business leaders, exploring “operational resilience amongst firms in the high growth sector”.
A topic perhaps now more pertinent than ever, this 60 minute webinar will be hosted by Deloitte subject matter experts on how the UK high growth, tech-enabled sector can address and navigate operational risk, both now, and in the coming months.
We are also delighted to be joined by Richard Caven of Amazon Web Services (AWS), who will provide an overview on what operational resilience means at AWS and how high growth, tech-enabled businesses can achieve operational resilience when using AWS Cloud.”
Thank you for your patience and goodwill during these challenging times. The NCSC has been working hard to establish a new date for the postponed CYBERUK 2020.
We are pleased to confirm that the postponed event will take place at ICC Wales on 11-12 May 2021.
If you have booked an Exhibition Stand
As a valued supporter of CYBERUK 2020 we are pleased to confirm that your package and contract can be directly transferred to the new date. To do this, please notify us that you are happy to continue, and we will issue you with a Contract Addendum that will need to be signed and returned to secure your position.
Thank you for paying your invoice prior to postponement, no further payment is required and this will be transferred to the event in May 2021.
If you are unable to transfer your package to the new date please get in contact as soon as possible and we will organise a credit note/ refund accordingly.
If you were not able to book an Exhibition Stand
The event exhibition was fully booked at the time of postponement. However, if any of the existing exhibitors are not able to attend on the new dates, then a number of stands may become available.
Please let us know if you are interested in booking a stand if one becomes available.
Innovators are at the very heart of Europe’s new industrial strategy which charts a course for it transition towards digital leadership. Europe’s industrial strengths include high quality research, and a vibrant start-up ecosystem and a mature infrastructure, key elements of the cybersecurity landscape. Cybersecurity is a top priority in Europe with the EU investing in research and innovation since the early 1990s. A rich array of large and small businesses, universities and research organisations ensure a there is a constant flow of new results, services and skills emerging.
The EC-funded project cyberwatching.eu has created a marketplace which captures these diverse innovations and is home to the many results of R&I projects. By building and nurturing a community of dynamic innovators in cybersecurity & privacy areas, the project has created a grass roots environment for innovation exploitation and sustainability opportunities. This natural framework connects research results with both the demand and supply sides.
With many results from H2020 projects featured, EU SMEs have also taken advantage of the platform and published their own innovative solutions on the platform. Users can preview and validate new leading-edge services, showcase their own solutions to potential users or partners who can support them in the evolution from prototype to real market solutions. In addition, users can provide early validation and feedback, thus possibly steer the direction of future development and research.
The Marketplace is an excellent chance also for end-users, in particular SMEs, which can benefit from services and solutions supplied by R&I projects, having the opportunity to both test and implement beyond the state-of-the-art cybersecurity solutions. This gives them a competitive advantage and the opportunity to attract more customers, create personalised services, sell premium cybersecurity- & privacy-enhanced services, and productise cybersecurity & privacy solutions.
The platform addresses end-users’ needs, enabling user-friendly discovery of the leading edge solutions which are present on it. The products can be filtered according to the five categories provided by the Network and Information Security (NIS).
We look forward to having your product in our marketplace catalogue.
Insert your product now by registering in Cyberwatching.eu and following the instructions.
Normally at this time of year we would be looking to see how many students had signed up for the CyberFirst residential summer courses at venues all over the United Kingdom. As you would expect, we have had to have a rethink and I’m delighted to announce that we will be running the courses in online virtual classrooms.
This allows us to continue to provide instructor led sessions which guide the students through the course content and labs at every stage and enables us to retain both SQA and NCSC Certified course status.
Bookings will be available from 10:00am on Monday 27th April with a formal HMG press release going out on Wednesday 29th April. I would be grateful if you would help promote through your educational and outreach channels from 27th April.
A few summary points about the courses:
CyberFirst summer courses are moving online featuring;
- Fun and interactive, instructor led sessions in virtual classrooms
- 2 weeks FREE structured learning in either morning or afternoon sessions
- Dates available from June – August
- Live guest speakers from industry and government
- SQA and NCSC Certified content
Visit https://www.smallpeicetrust.org.uk/cyberfirst for further information and booking
Applications for the National Cyber Security Centre’s hugely popular CyberFirst summer courses are now open. The courses, usually held all across the UK, are moving online this year to help more than a thousand 14–17 year-olds develop key cyber skills from home during the coronavirus pandemic. Enrolled students will learn how to code and carry out cybersecurity operations in an instructor-led virtual classroom to help guide the students through the programme and build a sense of camaraderie within each cohort.
The summer programme has more than 1000 places and three courses to choose from:
- CyberFirst Defenders for 14-15 year-olds introduces students how to build and protect small networks and personal devices. https://www.smallpeicetrust.org.uk/cyberfirst-defenders
- CyberFirst Futures for 15 to 16 year-olds allows students to explore advanced cyber security threats to devices, apps and software, then discover ways to prevent them. https://www.smallpeicetrust.org.uk/cyberfirst-futures
- CyberFirst Advanced for 16 to 17 year-olds is designed for students already studying computer science, who will hone the skills and behaviours they need to enter the cyber security or computing workplace.https://www.smallpeicetrust.org.uk/cyberfirst-advanced
- Visit https://www.smallpeicetrust.org.uk/cyberfirst for further information and booking
Thank you very much for your help and support.
September 2020 – Online
Webinar for SMEs and newcomers on how to do business with the NATO Support and Procurement Agency (NSPA)
Organised by DIT and UK MoD, date to be announced. For more information, please contact Thomas Flammant to register your interest (Desk +352 22 98 64 2216).
17 September 2020, The Hague
Public Security Exhibition The Netherlands
After the annual PSE in Belgium, there will also be a Dutch edition in 2020, organised by DIT The Netherlands in partnership with ADS. For more information, please contact Christian van der Woude (Tel +31 6 5541 4210).
13 October 2020, Mons
NATO Information Assurance Symposium
This is NATO’s largest cyber conference with an exhibition space. For an idea of last year’s edition, take a look at https://nias19.com/ For more information about 2020, please contact David Walker (Desk: +32 2 287 6234).
19 November 2020, Rotterdam
The NEDS exhibition is the flagship Defence Security event in The Netherlands, well attended annually by Dutch government officials. For more information, please contact Christian van der Woude (Tel +31 6 5541 4210).
2-3 December 2020, London
International Security Expo
Attended by DIT with official delegations, more info at https://www.internationalsecurityexpo.com/
8-10 December 2020, Rotterdam
Defence Technology (The annual submarine industry event from Clarion events, UDT, brings together researchers, military end users and professionals spanning the entire supply chain The 2020 edition will take place in Rotterdam, in the Netherlands. For more information, please contact Christian van der Woude (Tel +31 6 5541 4210).
20- 21 January 202 1 (date tbc) Capellen
UK Industry Day at NATO Support and Procurement Agency (Organised by DIT Luxembourg and Belgium. For more information, please contact Thomas Flammant (Desk +352 22 98 64 2216).
More than 285,000 businesses have already applied for the Coronavirus Job Retention Scheme since it went live on Monday 20 April.
To be sure payment comes through to you before the end of the month, you will need to apply today (Wednesday 22 April).
Accessing the system
We have noticed that some people have had difficulty accessing the system because they do not have an active PAYE enrolment. In order to make claim you will need to:
- have a Government Gateway (GG) ID and password – if you don’t already have a GG account, you can apply here, or by going to GOV.UK and searching for ‘HMRC services: sign in or register’
- be enrolled for PAYE online – if you aren’t registered yet, you can do so now, or by going to GOV.UK and searching for ‘PAYE Online for employers’.
Coronavirus Job Retention Scheme Calculator
We are updating the online calculator tool this afternoon, so that it covers more employment circumstances. The update will mean that you can use it to work out what you can claim for most employees who are paid variable amounts each pay period, as well as those who are paid fixed amounts.
If you have already made a claim
Please retain all records and calculations for your claims, in case we need to contact you about them. Provided your claim is made in accordance with HMRC’s published guidance, you can expect to receive the funds six working days after your application. Please do not contact us before this time.
HMRC will check claims made through the scheme and will act to protect public money against anyone who makes a claim using dishonest or fraudulent information.
We continue to be busy supporting customers at this time, so we would ask that you only call us if you can’t find what you need on GOV.UK or through our webchat service – this will leave our lines open for those who need our help most.
We’d encourage you to also protect your own credentials from potential scammers and opportunist criminal activity.
I wish you all the best at this challenging time.
First Permanent Secretary and Chief Executive – HMRC
As part of the government’s commitment to provide support to businesses and employers during the coronavirus (COVID-19) pandemic, HMRC have been offering live webinars on the Job Retention Scheme.
The following live webinar provides an overview of the support available to help employers and your employees deal with the economic impacts of COVID-19.
Places are extremely limited so please save your place now.
Coronavirus (COVID-19) Job Retention Scheme
During this webinar we’ll be taking a look at:
- furloughed workers
- who can apply for the scheme
- following the rules of the scheme
- how much may be claimed
- how to claim and what you’ll need to claim.
If you’ve missed any of our other recent webinars, or have been unable to join, you can now view a recording on HMRC’s YouTube channel.
We will endeavour to bring you the most up-to-date information to keep you fully informed of changes as they develop.
Stay at home. Protect the NHS. Save lives.
First Permanent Secretary and Chief Executive – HMRC
A further and final £100 million of the £300 million phase 1 COVID-19 Economic Resilience Fund has been released, this is a grant to provide financial assistance for eligible businesses and organisations who are facing operational and financial challenges as a result of the COVID-19 outbreak.
The purpose of the Fund is to support businesses and organisations with immediate cash flow support to help them through the economic consequences of the COVID-19 outbreak. The fund seeks to compliment other COVID-19 response measures to support businesses, social enterprises and charitable organisations in Wales.
Business Wales have released a tool to check your eligibility for the COVID-19 Economic Resilience Fund that is available to businesses and organisations in Wales and other support.
Here is a link to the tool: https://fundchecker.businesswales.gov.wales
If there are any accessibility issues for you that might prevent you from completing an online application form please call the helpline on 03000 6 03000 otherwise start the tool and follow the simple step by step guide.
The coronavirus outbreak is the biggest public health emergency in decades. It calls for decisive action, at home and abroad, of the kind not normally seen in peacetime.
We’re writing to our colleagues in the cyber security sector to tell you what the Government is doing to help the sector and provide the opportunity to feed your comments back to us. Many of you have already been in touch and we thank you for your engagement.
We aim to:
Provide information on the support the Government is offering to help businesses through this difficult period;
Outline what we are doing to continue our work on cyber security;
Provide details of how you may be able to contribute to the effort to help the public, and
Give you the chance to provide your views to the Government.
A Message from the Minister for Digital Infrastructure, Matt Warman
“Thank you to everyone for continuing to help make the UK a safe place to be online. Your work is more important now than ever. My Department is committed to supporting the cyber security sector during this crisis and is keen to hear from you on where and how that help can be most effective. I encourage cyber security firms to keep giving the country the tools needed to securely work online so we can all stay home, protect the NHS and save lives.“
Government response to coronavirus
On the public health issue, the Government is doing everything it can to tackle the pandemic and mitigate its impact. We are mobilising every bit of Government to defend our people and our country. Businesses, universities and communities across the country are coming together to help.
The Government is providing a range of support to help businesses, including loans, cash grants, tax relief and support for self-employed people. Please visit www.gov.uk/coronavirus/business-support for further information.
The Department for Digital, Culture, Media and Sport (DCMS) is supporting the wider Government efforts and we particularly want to understand the needs and asks of our sectors – including where and how we can work together to help society and the economy during the crisis.
Our work on cyber security
DCMS is prioritising support for the cyber security sector to help address economic challenges and critical incidents. We are continuing the delivery of critical Government programmes supporting the cyber security sector, such as the LORCA cyber accelerator, the NCSC Accelerator and our Cyber Discovery skills programme. We are also working with the National Cyber Security Centre and others to distribute guidance and advice to the public and businesses on how to stay secure online.
Cyber security guidance for the public
As you know, cyber criminals are opportunistic and often look to exploit fears over current events. The public and organisations should continue to be alert to this threat. The National Cyber Security Centre (NCSC) has issued guidance for organisations on how to prepare for secure home working and guidance on how to spot and deal with suspicious emails. Please feel free to share this with your customers and contacts.
With more interaction and work happening online, the Government is continuing its push to help the public and businesses live and work securely. DCMS is working with the National Cyber Security Centre and the Home Office to run a new phase of the Cyber Aware campaign. This will help the public and small businesses adopt secure online behaviours and protect themselves from current threats. This activity will start very soon. Please get in touch if your organisation is interested in partnering with us on this campaign.
Information and support for cyber security businesses
The Government and its partners have made several recent announcements for the cyber security sector. Many of our growth programmes are currently open to applications.
A new look Cyber Essentials scheme is now in operation, delivered by the IASME consortium.
The NCSC Cyber Accelerator is now open for applications from start-up businesses to help create new security solutions. Companies can apply to be part of the fifth cohort.
LORCA have opened a call for cyber security innovators to be part of the next cohort of their scale-up programme. Companies can apply here by 4 May.
Our early stage incubator programme, HutZero, run by CyLon and CSIT, is recruiting for its sixth cohort. The application deadline is 17 May.
Innovate UK currently have funding opportunities open for projects tackling cyber security IoT challenges (applications by 20 May) and grants of up to £50,000 available for innovation projects to help deal with Covid-19 related issues (applications by 17 April.)
In addition, DCMS has published a range of statistics and research over the past two months to help inform the cyber security sector, including:
The Cyber Security Breaches Survey 2020, published on 25 March. The survey details the scale and impact of cyber attacks and data breaches on businesses, charities and educational institutions. We have also published a series of infographic summaries illustrating the results.
Cyber Security Labour Market Research. This research provides details about the UK cyber security labour market.
Cyber Security Sectoral Analysis This is an analysis of the UK’s cyber security industry, which includes figures on size, employment and revenue.
Finally, please be aware DCMS will shortly be issuing a survey asking organisations across DCMS sectors for feedback on how coronavirus is affecting them. Please look out for this and respond if you can. Your feedback will be valuable in helping to shape future Government action.
If you have any specific feedback on cyber security, any questions about this note or any suggestions of how you may be able to help, please contact us at email@example.com. You can also keep up to date on announcements through the newly updated Cyber Exchange portal. Please feel free to share with note with your colleagues. We intend to send further communications in due course.
Erika Lewis, Director, Cyber Security & Digital Identity, Department for Digital, Culture, Media and Sport
Please find enclosed for your information and further dissemination:
- Welsh Government Covid-19 Economic Resilience Fund Press Notice issued today
- Welsh Government Covid-19 Economic Resilience Fund Q&A Brief
- Welsh Government Covid-19 Economic Resilience Fund Process Slides
Phase 1 online triage and eligibility for the Fund is now live and can be found at the links below:
If you have any questions regarding this information please don’t hesitate to get in touch with Emma Watkins (Deputy Director Economic Policy, Emma.Watkins@gov.wales / 07870 241616), Duncan Hamer (Deputy Director Business Duncan.Hamer@gov.wales / 07789 371391) or Gerwyn Evans (Deputy Director Creative Wales Gerwyn.Evans@gov.wales / 07795 122165) who are available to explain and help you further.
Periodic indicative notice – utilities
Directive 2014/25/EU – Utility Directive
Section I: Contracting entity
I.1) Name and addresses
National Grid UK Limited/National Grid USA Service Company, Inc
Warwick Technology Park, Gallows Hill
Contact person: Faye Osborn
Telephone: +44 7808094949
Main address: www.nationalgrid.com
I.3) Communication – Additional information can be obtained from the abovementioned address
I.6) Main activity – Other: Electricity and Gas
Section II: Object
II.1) Scope of the procurement
II.1.1) Title – Cyber Security Products and Services
II.1.2) Main CPV code – 48000000
II.1.3) Type of contract – Supplies
II.1.4) Short description – Over the next 12 months, National Grid expects to be conducting various sourcing events
for cyber security related products and services.
II.1.6) Information about lots – This contract is divided into lots: No
II.2.3) Place of performance – UK
II.2.4) Description of the procurement
National Grid uses the Achilles — Utilities Vendor Database (UVDB) — to identify and qualify potential suppliers for our goods and services requirements. For the majority of our purchases, it is a condition of supplying to National Grid that suppliers are registered on the UVDB. Over the next 12 months, National Grid expects to be conducting various sourcing events for cyber security related products and services using the following Achilles codes:
1.5.1. computer hardware and accessories – workstations/servers,
1.5.7. general business software,
1.5.8. specialist business software,
1.5.9. technical software,
1.5.12. computer systems.
Should you wish to tender for the provision of cyber security related products and services you will need to be registered on Achilles — UVDB for all codes listed above that are relevant to the products and services you provide.
Please contact Desta Wheeler at Achilles on: firstname.lastname@example.org if you require any assistance.
II.3) Estimated date of publication of contract notice: 06/04/2020
Section IV: Procedure
IV.1.8) Information about Government Procurement Agreement (GPA)
The procurement is covered by the Government Procurement Agreement: No
Section VI: Complementary information
VI.5) Date of dispatch of this notice – 03/04/2020
During this unusual time in our lives, many of us find we want to improve our knowledge, skills or even prepare for new career opportunities. If you are interested in cybersecurity careers, there are numerous online education providers to choose from. Many online courses are available from your local community college, four-year universities, even the prestigious Centers of Academic Excellence programs – please review all options.
The links on this webpage are for free and low-cost online educational content on topics such as information technology and cybersecurity. Some, not all, may contribute towards professional learning objectives or lead to industry certifications and online degrees.
Please note that this site will continue to be updated as new information is gathered and edited for clarity and accuracy.
Innovate UK Fund
New Innovate UK fund: Business-led innovation in response to global disruption
UK registered businesses can apply for a share of up to £20 million to respond to new and urgent needs in UK and global communities during and following the Covid-19 pandemic.
Update to the Coronavirus Business Interruption Loan Scheme (CBILS)
From the BBB:
“…the recently launched Coronavirus Business Interruption Loan Scheme (CBILS) has now been significantly expanded along with changes to the scheme’s features and eligibility criteria. The changes mean even more smaller businesses across the UK impacted by the Coronavirus crisis can access the funding they need.
Importantly, access to the scheme has been opened up to those smaller businesses who would have previously met the requirements for a commercial facility but would not have been eligible for CBILS. This significantly increases the number of businesses eligible for the scheme. The expanded scheme will be operational with lenders from Monday 6th April 2020.
New scheme features
No personal guarantees for facilities under £250k: Personal guarantees of any form cannot be taken under the scheme for any facilities below £250k.
Personal guarantees for facilities above £250k: Personal guarantees may still be required, at a lender’s discretion, but recoveries under these are capped at a maximum of 20% of the outstanding balance of the CBILS facility after the proceeds of business assets have been applied.
A Principal Private Residence (PPR) cannot be taken as security to support a personal guarantee or as security for a CBIL backed facility.
Security: For all facilities, including those over £250,000, CBILS can now support lending to smaller businesses even where a lender considers there to be sufficient security, making more smaller businesses eligible to receive the business interruption payment.”
Here is a fact sheet from the BBB.
Support & Mentorship
We are working on a research project with Cambridge Judge Business School and the Behavioural Insights Team to determine the impact of mentoring on digital tech businesses.
As part of this project, we are able to offer the opportunity for free mentoring to any digital tech SME with more than five employees.
For more information and to apply go here.
Statistics and Interesting Reads
A fascinating dive by Google into UK mobility changes city-by-city since the lockdown began.
Good article on building a virtual community across speed networking, webinars, shared experiences, virtual conferences etc – Don’t Just Throw Together a Webinar – The Virtual Events Crash Course You Need
A 24-tweet thread on how VCs are thinking about the pandemic. Not all VCs of course, but worth a read to get one perspective – https://twitter.com/fdestin/status/1243674766155943937?s=20
A solid post on managing layoffs, should founders unfortunately have to use it – Planning and Managing Layoffs
An interesting ready from Beauhurst on The effect of coronavirus on UK investment: Q1 2020
A nice story: members of the Cyber Wales network have been helping the NHS to receive and set up new IT equipment being sent to help fight the increased demand on the health service.
Last Wednesday at 4pm Cyber Wales received a request for help from NHS Wales.
We immediately sent out a CALL TO ACTION to the 2,000+ members of the Cyber Wales Ecosystem, this is what it said…
As you can imagine, the medical staff have really got their hands full at the moment but they are not the only ones. The IT staff, short-handed as they are, are up to their ears in work as well. Many of the hospitals and medical centres around Wales have just received new Desktops and Laptops which will be a massive help as they tackle the increasing demand. However, may of the contractors that they use to handle much of the basic workload, such as imaging, configuration and securing new end points have downed tools, either through being short-staffed or through unwillingness to travel.
Just to give you an idea of the scale of the problem, one hospital just took delivery of 1,000 machines and they have no-one to set them up. That is just one hospital and this situation obviously exists all over Wales (in an NHS building near you!)
So… Are any of you able and willing to lend a hand?
This could be visiting sites to set up machines or dialling into sites to set up by RDP or it could be receiving machines, setting them up and sending them back again – or any possible solutions you can think of that will achieve the same result. It could also be any bright ideas or best practice you may have been involved with (such as clever ways to set up mass PXE builds) that would help the onsite teams to do this job faster.
All hands to the pumps folks, your NHS needs you at this most trying of times. Please respond directly to Nick Lewis. I’m sure most of you know Nick from the Cluster meetings and the amazing talk he gave about cyber challenges in NHS Wales last year – well, things are even more challenging right now and he’d love to hear from you.
Within an hour Nick had received over 200 emails with offers of support from IT SysAdmins and Cyber folks from right across Wales – from Bangor to Wrexham and from Pembroke to Chepstow and all over Mid Wales. Word continued to spread and through Thursday and Friday there was a steady stream of volunteers including people from outside of Wales such as the MoD in Bristol. Other networks also picked up the call such as the DevOpsGroup and DCMS which was a huge help taking the total number of volunteers to over 400!
The Alacrity Foundation, who have a long-standing relationship with the Cyber Clusters, stepped up to the plate and helped to communicate the challenge to the NCSC i100 Network – proving the strength in depth of the collaborative networks in Wales and beyond.
This morning NHS Wales released a special Thank You message to Cyber Wales – let’s keep the momentum up folks and help the people who are trying to help us!
The Department for International Trade Defence & Security Organisation (DIT DSO), with Intec Export Intelligence, is organising the UK Group and Pavilion at the forthcoming International Defence Industry Exhibition – MSPO 2020 – in Poland from 8th – 11th September 2020.
Further details for this event are available. If you have any questions please direct them to:
For stand bookings and invoicing details contact:
James McInnes – Intec Export Intelligence, The Old Candlemakers, West Street, Lewes BN7 2NZ
For country information please note the following:
Latha Arun is currently out of office until mid April, please contact Afolake Johnson, E: Afolake.email@example.com
Alexandra Clarke | Business Support Officer | Defence & Security Organisation |
Department for International Trade
Please find below a communication that has been issued to the security industry and academia by the Joint Security and Resilience Centre (JSaRC).
In response to the COVID-19 outbreak, there have been many offers of products and solutions from industry and academia received across Government. These are many and varied. However, considering the complexity of the virus and its broad impact, many of these offers are possibly not being received by the relevant departments. It is important that there is centralised co-ordination of these ideas, so they are considered and reviewed appropriately.
As such, JSaRC is co-ordinating the receipt and detail capture of innovative and practical ideas from the security industry and academia regarding solutions and products that could be utilised, further developed or re-purposed in order to help the Government’s response to COVID-19.
This exercise is an ‘information capture’ activity and responses will be collated and shared across Government and the public sector. Responses and content considered workable and useful will be followed up as necessary. Relevant government teams are obviously under pressure and our country’s response is evolving fast. You should not necessarily expect a direct response to your ideas but JSaRC is committed to collating and distributing responses to the relevant government teams.
Ideas can be submitted by email to JSaRC@homeoffice.gov.uk. Title your email ‘COVID-19 Products and Solutions Response’. Include the following:
* Name of organisation, name and role of main contact, email address and telephone numbers.
* Details on your idea and product maturity level (using 250 words or less).
* How your idea can be used in relation to COVID-19 (using 250 words or less).
* All responses must be submitted as detailed above.
* Please do not include attachments or web links.
* This is not a formal competition or call, so there will be no follow-up communications unless there is a requirement for further detail.
* All information received as part of this activity will be treated in confidence.
New technology challenge to support people who are isolating
Funding is available for technology companies who come up with digital support solutions for people who need to stay at home because of COVID-19. Full details are available here.
COVID-19 supply of ventilators and ventilator components
The Department for Business, Energy and Industrial Strategy (BEIS) is looking for organisations who can support in the supply of ventilators and ventilator components across the United Kingdom as part of the Government’s response to COVID-19. They are seeking suppliers with the ability to design, manufacture in addition to those who have or could provide medical training or logistics capabilities. Further details, including how suppliers can respond is available here.
Director ‑ Security and Resilience Sector
Tech Nation will be blogging regularly about policy interventions the Government is making to support businesses. The blog is updated regularly so please continue to check it for the latest information.
However, for the details of individual policies from Government, we recommend you regularly visit the Government’s Coronavirus webpage.
For details of specific financial support – with the Coronavirus Business Interruption Loan Scheme eligibility and details due next week – visit the dedicated pages of the British Business Bank.
The Chancellor has made an announcement last week regarding paying a percentage of people’s wages, capped to a certain amount. For more information, check the Government’s GOV.uk’s page for employers.
If you are in the middle of a fundraise, we put this blog together, following a webinar session with over 100 founders and CEOs last week, who are doing precisely that.
In the meantime, if you are concerned about being able to pay your tax due to COVID-19, call HMRC’s dedicated tax helpline on 0800 0159 559. The UK Government’s Department of Business, Energy and Industrial Strategy also has a business support helpline: 0300 456 3565.
Have Your Say:
Understanding how your business is being affected is hugely important to us – we are working with the Government to inform further actions and interventions. It would be hugely valuable to us if you could spare some time to complete two very short surveys for us.
To aid the Wales Covid-19 Taskforce please fill out this survey (2 mins) – this is our best indication for the Tech Task Force for Wales, the UK Tech Cluster Groups, Welsh and UK Government and Public Sector organisations, to report on the situation on the ground.
If you feel that you can help the Government in dealing with the spread of this virus, there are a number of contacts we’re able to share with you.
- On vaccines, email Nervtag@phe.gov.uk
- For Ventilators, email firstname.lastname@example.org or call 0300 456 3565
- Offers of innovation and tech, email DNHSX@nhsx.nhs.uk
If you think you can offer something in other areas, then please email email@example.com and we will seek to try and match you up to the right team.
I have been asked to disseminate the below to all interested parties following communication from the National Cyber Security Centre, National Crime Agency and City of London Police.
‘We are already aware, as a result of this crisis increasing, targeted threats from Hostile State Actors and OCGs against a variety of targets, not least the Critical National Infrastructure and health sector with a number of significant incidents currently being responded to by the National Cyber Security Centre (NCSC) and NCA. We have all seen previously the impact such an attack can have, particularly on the NHS, so you will recognise the impact a major cyber incident would have at this critical time of national crisis and legitimate public concern.’
In addition, the existing wider, high volume of sophisticated ransomware attacks, which as you know can cripple an organisation and put it out of business, is also a real concern. The current business as usual level of attacks will have more damaging impact in this period as the businesses themselves, their IT companies and wider cyber security industry have less capacity to respond quickly to mitigate the damage with high levels of staff abstracted through sickness and self-isolation. We can therefore expect the economic and real world impact potentially to be significantly greater than usual and this will increase the number of incidents, victims and investigations.’
In order to combat these potential issues, the following threat and risk areas are being prioritised and advice is attached:
Areas 2, 3, and 4 are of equal priority. In addition the below link highlights an app that claims to provide updates on the spread of coronavirus, but then encrypts the phone – https://en-cryptonomist-ch.cdn.ampproject.org/c/s/en.cryptonomist.ch/2020/03/16/covidlock-ransomware-coronavirus/amp/
Also attached is the US alert pdf around Coronavirus_map_Azorult.
If you have any questions or issues about any of the above please do not hesitate to get in touch to discuss further, but please share widely certainly with the members of Cyber Wales..
Symon Kendall | Cyber Officer
Ditectif Gwnstabl | Detective Constable 3385
Uned Troseddau Seibr Rhanbarthol | Regional Cyber Crime Unit
Uned Troseddau Cyfundrefnol Rhanbarthol | TARIAN ROCU
01656 310146 | Ext: 62095
Congratulations to ‘CSL Rush’, a team from The Cathedral School in Llandaff, for coming 3rd in the National Finals of the NCSC’s CyberFirst Girl’s Competition 2020.
The event was hosted at Cornerstone, one of Cardiff’s newest conference centres which is also Cardiff’s oldest neo-gothic church. It was first opened in 1855 but when its Welsh-speaking Presbyterian congregation moved to join forces with another church the Heritage Lottery Fund helped the building to be re-born as a vibrant and exciting mixed-use community hub and corporate venue. The perfect backdrop for this cutting-edge technical event.
Janvi, Agnes, Iris and Bethan from Year 8 of the independent school took part in the online qualifying round against 12,000 participants and then showed stellar skills in the semi-finals and accumulated enough points to beat off nine other Welsh schools to secure themselves a place in the final.
The NCSC are working hard to get more girls interested in a career in cyber security. The CyberFirst Girls Competition provides a fun but challenging environment to inspire the next generation of young women. The competition is a team event, with each one made up of 4 female students from Year 8 in England and Wales, Year 9 in Northern Ireland and S2 in Scotland. The Grand Final was where the top ten teams from the regions gathered to compete for the title of CyberFirst Girls Competition Winners 2020.
It was a very close competition involving multiple streams of activities ranging from Capture the Flag hacking to robotics programming and good old-fashioned problem solving.
The proud winners were from King Edward’s School in Bath and all of the girls who took part on the day had a terrific time.
Well done to all the participants and llongyfarchiadau mawr iawn to the girls from Cathedral School for demonstrating the depth of cyber talent here in Wales.
Since 2017, Cyber Ireland have been bringing together Industry, Academia and Government to represent the needs of the Cyber Security Ecosystem in Ireland.
Their stated aims are a very close match for those of Cyber Wales, aiming to enhance the Innovation, Growth and Competitiveness of the companies and organisations which are part of their cluster.
At a Breakfast Briefing held in Welsh Government’s Dome Cymru, erected outside the iconic Customs House Quay building in Dublin, members of Cyber Wales – Dr Kerry Beynon of RDP Law and Damon Rands of Wolfberry – engaged in a series of presentations and a panel discussion with Cyber Ireland members on the importance of building a strong and collaborative Cyber Community.
The event, which formed part of Wales Week Dublin, was hosted by the Welsh Government Office in Dublin & UK Department of International Trade.
Great relationships were forged and we are all looking forward to welcoming Cyber Ireland to a Cyber Wales Cluster meeting very soon.
In relation to cyberwatching, we have totally renewed the website, following EC suggestions. Now registered users can have a personalised view, according to their interests, where they can see “Market-ready products” and “Prototype products”, both from projects and companies, that can register their project/company to provide a personalised mini-site for all visitors.
If anyone from your cluster joins the marketplace or the project hub, we could promote in the news, linking it to your cluster.
We have also launched two attractive tools:
The project radar: The Radar allows the user to answer the question whether and where to invest themselves in the outputs of a project or not. It provides a birdseye view of the complete collection of EU funded projects in the cybersecurity space by using a cool visualization software. The interactive online radar process uses:
o the project’s classification within the Cyberwatching.eu cybersecurity research taxonomy,
o well known IT project lifecycle maturity patterns, and
o project readiness self-assessment against Technology Readiness Levels and Market Readiness Levels (MTRL)
The GDPR Temperature Tool, an awareness tool which helps SMEs, though a practical self-assessment, to understand their exposure to risk of sanctions due to GDPR violations and act accordingly in order to improve their compliance posture. It also provides a complete and downloadable report that can be a guide for SMEs to minimize their risk to be sanctioned.
Our next webinar is about how to improve the market readiness levels for the R&D projects, and it will be held on next 11 March at 11 AM CET. Register is open.
We would be glad to organize a webinar around a topic of your interest – you can see here the webinars organized so far).
Hope to hear from you soon.
Marina Ramírez Jiménez
Stelar Security Technology Law Research” is a start-up established in Hamburg (Germany) that aims to promote education and research through the implementation of scientific courses and research projects and the award of research contracts. We are specialised in research on
* legal assessment methods for “Privacy by Design” of new security technologies and
* privacy management systems for manufacturers of ICT products and related service providers.
Stelar was founded as a spin-off of an integrating project with seven main partners funded by the German Federal Ministry of Education and Science (BMBF) within its Framework Programme “Research for Civil Security.
They are seeking a colleague specialised in research on privacy in health ICT (see job post below).
It does not matter if his or her background is technical, economic or legal, only has to be privacy specialist and coming from research or ICT development. Some background in EU projects and standardisation would be nice. S/he needs to be willing to move for work but hopefully the location is attractive (Europe’s largest new inner city).
* Seeking 3 researchers on privacy in ICT development mainly in healthcare *
Our past work includes contributions to projects like www.operando.eu and www.project-shield.eu
mandatory qualification: Master degree (LL.M., M.B.A., M.Sc., etc.) with a focus on data protection and privacy or equivalent five-year degree and three years of relevant work experience in ICT (e.g. AI) research and technical development or digital transformation projects
optional expertise (ordered by relevance): standardisation on privacy, health informatics and medical software development, EU policies and regulation on data protection, eHealth and consumer protection, ICT law, cyber-/information security, data/AI ethics, corporate responsibility
optional experience (ordered by relevance): work experience in Europe-wide, healthcare and health ICT organisation or project as a legal/technical privacy researcher; leadership in international R&D projects; chairing/leading roles in technical bodies or policy groups; work experience as a DPO, ethics committee member, privacy specialist/engineer, CISO, software architect, CIO, or product manager
role: research in and management of EU-funded research and innovation projects related to data protection and privacy, autonomous collaboration within the projects, contribution to work packages, draft privacy specifications for ICT processes and manage and analyse implementation by project partners, literature review, drafting of reports, organisation of/participation in (virtual and physical) meetings, contributions to technical standardisation, work on privacy-related topics (e.g. data and IPR management), review of team members’ work; no teaching requirements; administering own travel and other tasks arising from the projects motivation and achievements in the support of the principle of data protection by design and by default such as effective pseudonymisation (e.g. by contribution to international standardisation) is expected
required skills: management of collaborative ICT research or development projects and trans-disciplinary and multi-stakeholder teams; timely and satisfactory reponse to emails, proactive raising of issues, alignment with the project’s key people, encouraging constructive partner contributions, organisation of virtual meetings); proficiency in MS Office suite, mastering collaboration tools (online repositories like SharePoint, online document editing, teleconference systems e.g. GTM and webex, scheduling tools e.g. Doodle, etc.); English during studies and work (3 years)
salary for FTE (gross) approx. in euro per month (in brackets: additional years of relevant work experience): 4.0k (0), 4.8k (3), 4.9k (4), 5.6k (4+2/3); first contract limited to two years, six months trial period; work linked to the projects; travel in Europe required; respectful athmosphere in a micro team, mid- to long-term leadership position within the organisation possible; all nationalities and genders welcome
procedure: apply by email to mp [at] stelar [dot] de; up-to-date CV (max. 2 pages), motivation letter (max. 1 page), contact details of at least 2 referees, recommendation letters possible, all documents as a single pdf of less than 2MB; remote interviews (e.g. Skype; physical meeting possible but no funds available) with our main researcher Matthias
start date: 1 March 2020 or as soon as possible
place of work: Hamburg city centre, office 1-minute walk from “HafenCity Universität” metro station
contact: Matthias Pocs – firstname.lastname@example.org
The Cardiff School of Technologies at Cardiff Met University are looking for industry partners who would be interested in collaborating on some projects.
Two Senior Lecturers in Computing and Information Systems at the university will be going out to Saudi Arabia soon and will be meeting up with the cyber security team at Aramco Oil with the aim of initiating some research.
They would like to invite a Cyber Wales Cluster member company to get involved with the aim of targeting a SMART Expertise funding stream.
SMART Expertise is a Business Wales scheme which offers financial support to innovative collaboration projects that require a range of expertise to solve industry problems (https://businesswales.gov.wales/expertisewales/support-and-funding-businesses/smart-expertise).
The aim is to support collaborative projects, between industry and Welsh research organisations (such as the Cardiff School of Technology), which address strategic industrial technical challenges with a clear focus on commercialisation and exploitation of new products, processes or services and growth in capacity and capability in key areas of Smart Specialisation.
There are no restrictions on size or location of industrial partners, however, the project must demonstration it is an effective collaboration and will deliver positive Welsh economic impacts.
Funding will support 100% of the research organisations eligible project costs which shall equate to a maximum of 50% of the total eligible project costs. The industrial partners shall provide the remaining balance of the total eligible projects costs. The funding will be awarded to the research organisation. Project activity must end no later than 1 August 2022
If you are interested in exploring the Saudi Arabian and Gulf marketplace and/or interested in getting involved with a SMART Expertise project then contact:-
Fiona Carroll, Programme Director at Cardiff Metropolitan University.
Newport Campus hosted the Welsh semi-final of the National Cyber Security Centre’s CyberFirst Girls Competition 2020 last Saturday.
Teams of girls aged 12 and 13 from 10 schools worked on a series of online codebreaking challenges set by industry during the event, which was one of 18 that took place simultaneously across the UK and involved almost 12,000 girls.
It was the first time a Wales-only contest – hosted at the National Cyber Security Academy (NCSA) at Newport Campus – has been held, thanks to the competition’s new regional format. The top 10 teams – including the Welsh champions – will then face off in a Grand Final in Cardiff next month.
The CyberFirst Girls Competition was launched four years ago by the National Cyber Security Centre (NCSC) – a part of GCHQ – with the aim of boosting interest in cyber security among females, who are currently under-represented in the industry.
“We were delighted to host this competition at our Newport campus,” said Clare Johnson, USW’s Head of Cyber. “The girls worked incredibly hard all day, and it was very close at the end.
“Encouraging greater diversity in the industry is vital to ensure we can provide the best defences against ever increasing cyber attacks and events like this help inspire and encourage girls to consider a career in this field”.
A French software editor operating in the field of cybersecurity (application security) is looking for partners in Information and Communication Technologies (ICT) sector.
The partners will help their clients who need support in mastering the cyber risk of the software applications they develop or outsource. The partnership will be a services agreement.
The company is a start-up established in 2017. The founders are specialists in cybersecurity and code auditing thanks several years of experience in this field.
The French company has developed an innovative software: a new generation source code scanner. This innovative tool is used for smart detection of vulnerabilities in the source code of software developments.
The French company would like to find partners such as services provider who can promote and install its innovative source code scanner for applications editors, integrators, services providers through a services agreement.
For more information go to https://een.ec.europa.eu/tools/services/PRO/Profile/Detail/751311fe-2f55-4ea0-902b-874c7a58c2f5
In September 2018, Andrew Peaty from the MoD’s Defence and Security Accelerator (DASA) came along to our Cluster meeting in the Cyber Village and explained how their no-strings-attached funding worked for companies with appropriate cyber solutions. He gave some great examples of innovative small businesses who have sold solutions into the MoD and described how to apply.
A number of companies, including Awen Collective based in Caerphilly took the time to speak with DASA and after learning more about the MoD and working out how their innovative security software solution could add value, they were awarded innovation funding to undertake an industrial cyber security project entitled “Project DOMINO”.
The funding was awarded as part of the DASA Open Call that seeks to discover innovative technologies from non traditional defence suppliers.
“As a small start-up company, the funding and support from the Ministry of Defence will help us to rapidly gear-up and provide innovative, valuable and proven industrial cyber security software to the various parts of the MoD reducing the possible disruption to military capability caused by large scale or targeted cyber-attacks” said Daniel Lewis, CEO of Awen Collective. “In addition it will advance the reach of our solutions into other sectors of critical national infrastructure (CNI) and advanced manufacturing, all facing challenges in the face of rapidly increasing cyber threats”.
The project, based on Dot software by Awen Collective, has arisen from a need not just in the MoD, but across society, where cyber-attacks on critical infrastructure such as energy, water and transportation could have catastrophic effects on people’s day-to-day lives.
The project commenced on the 1st November 2019, and will run for 12 months, culminating in an MoD evaluation of the demonstrated concept. This will lead to further exploitation within the MoD, its supply chain and Industry providers involved with CNI.
Many congratulations to Awen It is great to see successes like this come from the Cluster meetings of Cyber Wales and we all wish Dan and his team the best of luck in this exciting venture.
Thanks also to Andrew Peaty from DASA who has taken the time to come to Cluster meetings and meet Welsh companies who want to reach other markets – keep up the good work Andrew!
SOFIC is a leading Industry Conference & Exhibition in the USA focusing Special Operations Forces (SOF) providing a unique platform to engage with the US and international SOF community on a vast range of capabilities and products.
This event gives unrivalled access to the complete range of US Special forces with links to the Department of Defense (DoD) within the US Market. In addition to this, SOFIC offers live demonstrations, networking and close engagement with exhibitors whilst also attracting a considerable number of international attendance
DIT DSO has successfully coordinated the UK Pavilion at the event for a number of years with positive feedback from attending UK companies.
We currently have 12 spaces available to exhibit (£3,500 + VAT)
For further information and to express an interest to be part of the UK pavilion for this show, please do not hesitate to contact me on my email address which is Laurence.email@example.com or speak with any of my colleagues below:-
0207 215 8362
Assistant Head Americas
0207 215 8185
USA Desk Officer
0207 215 8195
Team Leader Events & Exhibitions
US Embassy Washington DC
Capt James Pugh
UK British Army Adviser
0207 215 8467
Tomas Lazor, a Podpraporcik, which means Warrant Officer/Investigator, from the Police Force of the Slovak Republic, came to Wales to meet with Mike Yeo, Detective Inspector of the Cyber Crime team of the Southern Wales Regional Organised Crime Unit (TARIAN).
The Slovak Police Force is growing and developing its cyber resources and whilst not being a dedicated cyber investigator himself Tomas, along with many others in the Force, is keen to learn, collaborate and do more to help cyber victims in his District of Strážske, Michalovce in the Region of Košice in Eastern Slovakia.
On a trip to the UK, which included visits to the Northampton Police, EMSOU (the East Midlands ROCU) and the London-based Police ICT Company who promote UK Police practices and technology worldwide, Tomas discussed approaches to cyber investigation and shared ideas and best practice on a range of cyber-related topics.
With a population of 5 million, Slovakia is closer to Wales in size and dynamics than to the UK as a whole and Tomas jumped at the opportunity to come to Wales and meet with the TARIAN Regional Cyber Crime Unit who have been proactive members of the Cyber Wales Ecosystem since attending the first ever South Wales Cyber Security Cluster meeting back in 2014.
He also brought with him an age-old police tradition, practiced by representatives when visiting their international counterparts. The ‘exchanging of hats‘ is widely practiced between visiting police forces and in return for the Slovakian forage cap he was given an iconic UK Police helmet complete with the cap badge of the South Wales Police.
Welsh biometric innovators Connective Touch from Ebbw Vale are opening doors in Canada – 5 September 2019
In July 2018, Mike Thususka, the Director of Economic Development for the City of Summerside in Eastern Canada came to visit Cyber Wales looking for innovative technologies that could add value to their ambitious Smart Cities programme.
Cluster member Steve Gallagher from 888 Group introduced Mike to the Cyber Wales Ecosystem through Bill Fraser, the Cardiff-based International Business Development expert from Fraser International.
8 Cluster members including Priszm & Interceptor Solutions from South Wales, TarianTech from Mid Wales and SI Risk from North Wales met with Mike to discuss the potential for their technologies in the North American markets.
6 of the Welsh companies were subsequently invited to visit Canada in November to demonstrate their ideas to the various Departments of the Summerside Government.
The “Living Lab” that Summerside have created across their city provides an amazing testbed for new technologies and the offer to use it was complimented by a soft landing programme for new companies, mentoring on the markets and proactive promotion of the vendors in Canada and the US through Summerside’s own business development networks.
One company, Connective Touch, were so warmly received that they incorporated a company in Canada in February and are running a full scale pilot installation of their unique biometric systems across the city with plans to tackle the giant market opportunity using Summerside as their launch pad.
Many congratulations to Devi Sohanta, founder of Connective Touch. It is great to see successes like this come from global reach of Cyber Wales and we all wish Devi and her team the best of luck in this exciting venture.
Thanks also to Bill Fraser who continues to work his magic for Welsh companies who want to reach other markets around the world – keep up the good work Bill.
Cyber Wales Ecosystem answers call-to-arms as Welsh Student set to compete at WorldSkills 2019 Competition – 4 August 2019
Kyle Woodward, a student at the National Cyber Security Academy in Newport, has successfully battled his way through Local, Regional (Wales) and then National competition stages to gain a seat on the plane to represent Team UK at WorldSkills 2019 in Russia along with 30 other people. Team UK are now training hard in their respective areas of expertise for this opportunity to shoot for Gold Medals in this event which has been dubbed the “Vocational Olympics“.
WorldSkills 2019 will take place in Kazan, Russia on 22-27 August 2019. The WorldSkills Competition, which is run every two years hosted by different Nations each time, will bring together more than 1,600 young professionals representing more than 60 countries who will compete in 56 skills which are grouped into 6 Sectors including ICT. The event will be held at the KAZAN EXPO International Exhibition Centre where more than 1,500 Experts will evaluate the Competitors’ performance (see www.worldskills2019.com for more information).
7 competitors from Wales will represent Team UK at this competition, the highest ever number of Welsh competitors representing Team UK. The competitors from Wales include:
- Kyle Woodward in Cyber Security from Cardiff and Vale College
- Phoebe McLavy in Hairdressing from Coleg Sir Gar and Morgan Edward Salon
- Collette Gorvett in Restaurant Service from Gower College Swansea
- Chris Caine in Joinery from Pembrokeshire College and DH Carpentry
- Sam Everton in Cooking from Pembrokeshire College and Crwst
- Thomas Lewis in Electrical Installation from Cardiff and Vale College and Blues Electrical
- Thomas Thomas in Plumbing from Coleg Meirion-Dwyfor
Kyle attended a Welsh Language school and is a fluent Welsh speaker, he then went to college (Cardiff & Vale) and then onto an apprenticeship degree course at the ground-breaking National Cyber Security Academy in the University of South Wales. He joined the South Wales Cyber Security Cluster when he started his degree and has been a very proactive member.
When we discovered that Kyle had been selected to represent Team UK at WorldSkills, the Cyber Wales Ecosystem put out a “Call to Arms” to the entire membership asking if anyone could help Kyle get some additional experience and knowledge training ahead of his trip to Russia and the response has been amazing (a real Welsh “Dunkirk” story!). We had lots of responses including: –
- NHS Wales
- SANS Institute in Swansea
- Royal Signals Cyber Troop
- TARIAN Regional Cyber Crime Unit
- North Wales Police Cyber Crime Team
- Glyndwr University
We also reached out to GlobalEPIC, the Global Ecosystem of Ecosystems in Cyber of which Cyber Wales is a Founding Member, which includes 27 Cyber Clusters in 18 countries across 6 continents and received invitations from The Hague Security Delta in the Netherlands and the iCyber Techhub in Maryland USA offering to host Kyle for some special training sessions and considering exchange visits for their Cyber Champions to come to Wales.
May’s South Wales Cluster Meeting was staged at the Cyber Village on the National Cyber Security Academy floor of the USW City Campus in Newport and the entire agenda was given over to providing learning, advice and tips on a number of cyber related topics from the experts in the Cyber Cluster. Questions were posed to prompt discussion and the group, offered opinions, experiences, healthy debate and handled any specific queries Kyle had around target learning areas in preparation for the competition.
After the meeting, Kyle was taken over to the Cardiff Barracks of the Royal Corps of Signals Cyber Protection Troop at 53 Signal Squadron where he joined members of British Army Cyberists from Cardiff, North Wales, London and Army HQ Wales for an interactive session on Cyber in the Armed Forces including the Cyber Kill Chain, Indicators of Compromise and the Army’s Cyber Incident Response Process.
Kyle was also welcomed by the NHS Informatics team and shown how incident response and secure programming are handled as well as being given the chance to quiz the team and get further guidance for study.
Following his adventures with the South Wales Cluster, Kyle travelled up to North Wales two days later for a session with the North Wales Cyber Security Cluster which included time in the new Cyber Labs at Glyndwr University, input from the North Wales Police Cyber Unit and a session with Cyber Experts in forensics and secure development.
SANS Institute, the biggest provider of Cyber Training in the World, who have their EMEA HQ in Swansea, also hosted Kyle, offering him £7,500 worth of certified training free of charge – which took place in Germany.
John Davies, CEO at Pervade Software and Chair of the South Wales Cyber Security Cluster, said: “Being part of Team UK at WorldSkills is a massive achievement for Kyle, and shows the strength and sense of community of the Cyber Ecosystem in Wales, with a number of cluster members offering experience and knowledge training as Kyle prepares to go to Russia. We’ve even set up exchanges for cyber champions with other eco system members across the world.”
We would like to take this opportunity to wish Kyle the best of luck in the competition and whatever the result, he will remain a winner in the eyes of all in Cyber Wales.
Pob Lwc Kyle a Team UK!
NCSC have published a blog reminding organisations that they should apply DMARC on any domains they own but no longer use, as those “parked” domains can still be spoofed.
The blog can be found here: https://www.ncsc.gov.uk/blog-post/protecting-parked-domains
Airbus Cyber Innovation celebrates the opening of its Cyber Innovation Hub located in the Airbus facility in Newport, Wales. The Hub hosts leading cyber security research initiatives, incubators and accelerators, and academic research partnerships. Key areas of research include the protection of industrial control and safety critical systems, understanding the human factors of cyber security, and artificial intelligence and data analytics.
The Newport Hub helps promote Wales’ reputation for cyber excellence by developing cyber talent in the region and engaging with Welsh industry and academia.
An ambitious cyber security initiative jointly funded by the Welsh Government and Airbus called CyberLab is hosted at the Airbus Cyber Innovation Hub. The dedicated up to £8 million programme of activity and research in a laboratory environment develops fundamental cyber security research for key industrial requirements in advanced manufacturing organisations.
Partnerships with academia are key to Airbus Cyber Innovation’s goal of identifying and developing emerging research and technology. The Centre of Excellence in Cyber Security Analytics is a partnership with Cardiff University launched in 2017. A leading UK academic research unit for cyber security analytics, the team is developing new ways of protecting corporate IT networks, intellectual property and critical national infrastructure from cyber attacks.
Attending the opening, Ken Skates AM, Minister for Economy and Transport, said: “I am delighted to be working in partnership with Airbus on this exciting and absolutely vital new facility. This Cyber Innovation Hub will give front line leadership in cyber security to companies and enterprises across Wales and indeed the UK for this and future generations. I view Cyber as a building block for every commercial enterprise in Wales. It is not only larger businesses that should be concerned about cyber security, it is every size of business across the entire Country who needs to take action now to safeguard our national infrastructure and strong supply chain.”
Dr Kevin Jones, Head of Airbus Cyber Innovation, said: “The launch of the Cyber Innovation Hub is further recognition of the strategic importance of the cybersecurity research and innovation programme for Airbus. It demonstrates the company’s commitment to cybersecurity and research into the protection of business and critical systems and recognises the value of the cyber security ecosystem in Wales. The flagship cyber innovation laboratory and CyberLab programme enables transformation of the cyber security horizon, and further enhances the “Cyber Wales” brand on a global scale.”
Today, there are 23 Cyber Security Clusters operating in the UK under the umbrella of the UK Cyber Security Forum.
These Clusters are helping cyber security professionals to meet regularly and share best practice all over the country from Scotland to Cornwall, from Wales to Norfolk and everywhere in between. The Forum was founded as a Community Interest Company in 2014 by Dr Emma Philpott who also formed the very first Cyber Security Cluster in Malvern in 2011.
Cyber Wales began life as one of these Cyber Security Clusters, the second open Cluster to form after Malvern, and since 2014 we have grown into 7 Clusters with 1,200+ members from over 750 organisations enjoying partnerships with 30 international Clusters from 25 countries across all 5 continents.
All of this began thanks to the vision and hard work of Dr Emma Philpott and we are delighted to offer our CONGRATULATIONS to Emma for being awarded an MBE for contributions to cyber security.
It all began when Emma earned her PhD for her work in the UK MoD in CMCs (ceramic matrix composites) used today right across the Defense and Space industries and beyond. This highly technical background was the foundation that enabled a shift into the world of Cyber Security and when the UK Government announced it’s first public release National Cyber Security Strategy in 2011 Emma was right there in the thick of things.
Determined to fly the flag for SME’s and minority groups in a cyber security world dominated by Government and Enterprises, Emma set about redressing the balance and we are all enjoying the results of her ideas and hard work.
In addition to running the Malvern Cluster and the Forum, Emma runs a company, The IASME Consortium, which was selected as one of the first Accreditation Bodies for the UK Government’s Cyber Essentials Scheme and IASME have completed more than the lion share of the certifications issued to organisations all over the UK.
More recently, Emma has pioneered another visionary project. The UK Cyber Security Forum runs cyber security training courses for unemployed neuro-diverse adults and the graduates from this revolutionary training programme are working in a SOC (Security Operations Centre) aimed at running services for micro-businesses and charities.
It is ideas, vision, hard work and dedication to causes such as these that has made Emma stand out within the industry and whenever a panel of experts is assembled or whenever the BBC needs a comment from an industry expert, it is Dr Emma Philpott who is first on the list.
Dr Emma Philpott MBE… Cyber Wales would just like to say “Llongyfarchiadau mawr iawn i chi Emma, a diolch yn fawr iawn i chi am eich waith galed“
Do you want to help us protect people from cyber crime?
We’re looking for like-minded individuals to spread the word as widely as they can about the latest scams, threats and advice. That way the region can become more clued up about cyber crime, and together we can make the North West safer online.
It could be that you work for an organisation and are able to persuade your communications team to support a marketing campaign either on your staff intranet or public facing website.
Maybe you are from an IT/Cyber company and you want to ensure the advice you are giving your customers and suppliers about new threats is up to date.
It might just be that you are able to share any messaging we give you on your social media platforms.
Perhaps you are part of a business networking group like a Chamber of Commerce and you are able to share information with your members.
Whatever it is, we’d like to know how you can help and we’re always open to ideas.
So what does it involve?
The first thing we want to do is share information with you about a forthcoming campaign taking place on the 7th June (eeek!) around Phishing e-mails. We have pre-written content which could be used within a newsletter, intranet or website. This is accompanied by social media posts and graphics with its own campaign hashtag. We’d like as many partners as possible to sign up and pledge to support the campaign. We’d need to know what you are able to do to show your support, for example, ‘shared the messages on twitter, our account has XXXX followers’ or ‘created a page on our staff intranet page which reaches XXX employees’. Sending us this feedback through is vital in order for us to show the reach of this work.
How often will I receive information?
How long is a piece of string? In the world of cyber, things move very fast and are always changing. One month we might only contact you once with a new marketing campaign theme around a specific issue. The next month there might be two or three new threats to tell you about. But we promise not to bombard you, and if you change your mind about receiving stuff from us you can always un-subscribe.
How to you get involved?
Simply click on the text below to show your support, then we’ll create a mailing list and add you onto it.
CYBERUK is the UK government’s flagship cyber security event. Hosted by the National Cyber Security Centre (NCSC), it features world-class speakers, solutions and opportunities for interaction between the public and private sectors.
CYBERUK is the authoritative event for the UK’s cyber security community. It demonstrates what businesses, government, law enforcement and academia can do together as teams and as organisations to deliver a digital Britain that leads the world in cyber resilience.
As in previous years, Welsh Government had a stand at the event and Neil Sandford was showcasing the Cyber Wales Ecosystem with the help of a number of members of the Welsh Cyber Clusters.
Cyber Wales representatives Clare Johnson, Head of Cyber Security for the Faculty of Computing Engineering & Science at the University of South Wales and Pete Burnap, Professor of Data Science & Cybersecurity at Cardiff University School of Computer Science along with John Davies, Co-founder & Chair of the South Wales Cyber Security Cluster who wer on-hand to answer questions about Welsh cyber capability.
This year, delegates were offered seven content-rich Streams, encouraging active audience participation in the key areas of Collaborating Securely, AI, Countering the Adversary, Resilience and Resisting Attack, Safety and Cyber Security, Growing Cyber and a Stream of Interactive Workshops.
Cyber Wales also demonstrated proactive support for the MoD Army 2020 Strategy and in particular the strategy to develop tactical Cyber Protection Teams in the Army Reserve. South Wales Cyber Security Cluster Member Mark Howells, himself a Reservist with 53 Signal Squadron of the Royal Corps of Signals and a Cyber Troop Commander was given permission to man the stand in uniform to raise the profile of this important national initiative.
RSA Conference conducts information security events around the globe that connect attendees to industry leaders and highly relevant information. Their conferences draw over 50,000 attendees per year, more than any other conference in the world. Events offer valuable content presented by some of the industry’s most forward-thinking leaders, the chance to network with thousands of peers and the inspiration to protect organizations now and in the future by finding new ways of approaching security.
GlobalEPIC chose this conference to hold a Members Meeting and representatives from Cyber Security Ecosystems around the world gathered at the Venable Law Firm’s offices in North Beach.
This was a great opportunity for all members to take a break from the conference, get together informally and discuss some of the projects and initiatives that have emerged from GlobalEPIC recently, such as the Soft Landing Programme and the sharing of information about Cyber Ranges.
Caroline Thomas from ObjectTech Group, a proactive member of Cyber Wales and the South Wales Cyber Security Cluster, attended the meeting and provided a briefing on the Welsh Soft Landing offering. Caroline was at RSA as part of a delegation from the NCSC Cyber Accelerator LORCA and a number of others from the cohort joined the meeting to learn more about the Global Ecosystem of Ecosystems of which Cyber Wales is a Founding Member.
Cyber Wales members formed a Delegation of cyber security companies who were invited to present to a range of industry representatives from all over Japan at an event held in the British Embassy in Tokyo.
Presentations were given by Dr Kerry Beynon, European data privacy expert, partner at RDP Law, Damon Rands, CEO of Wolfberry Cyber and John Davies, Managing Director of Pervade Software and they were later joined by Japanese experts for a Discussion Panel.
The Delegation was hosted by the Japan Cluster of Security Professionals and their Founder & CEO, Sam Matsumoto, commented “It is a pleasure to host specialist Welsh cyber companies and we would like to encourage cooperation and collaboration in the fight against the growing global threat of cyber attacks“.
The event was supported by the new Welsh Government Representative for Japan, Robin Walker and his Inward Investment staff including Goro Okada who worked with the British Embassy to help make the event a success.
In addition to the event, the trip involved a series of meetings between Cyber Wales companies and major companies in Japan including Telecoms, Energy and Security Service Providers which provided the opportunity to explore collaboration in more detail.
Some Cyber Wales members were also lucky enough to have been among delegates who were interviewed for Japanese Television when they arrived at Tokyo Airport.
The London Office for Rapid Cybersecurity Advancement (LORCA) is a joint collaboration between Plexal, CSIT and Deloitte. It’s funded by the Department for Digital, Culture, Media & Sport as part of the National Cyber Security Strategy.
LORCA’s facility at the Queen Elizabeth Olympic Park in London is a place for innovators, corporates, investors, academics, and engineers to come together and grow the most promising cybersecurity solutions of our time with tailored support to help them scale and meet the needs of industry. The first cohort of 9 companies joined in June 2018, and 6 months later, the second cohort of 10 businesses have just been announced.
ObjectTech Group Ltd, who work out of Falcon Drive in Cardiff, are proactive members of Cyber Wales and the South Wales Cyber Security Cluster and we are all delighted that they were selected to be in the 2nd LORCA Cohort.
Caroline Thomas from ObjectTech said “A huge thank you to the CyberWales team for introducing us to Lydia and the LORCA opportunity at the November Cluster meeting. Our selection announced today as 1 of 10 UK cybersecurity companies chosen for Rapid Cybersecurity Advancement, illustrates the power and impact of the ecosystem that has been created in Wales“.
CyNation, a Satellite Member of the South Wales Cyber Security Cluster who are based in London, have also been selected for this Cohort and we wish Shadi Razak and Daniela Menzky, who have been involved in collaborations with Cyber Wales members, all the very best in the growth of their unique cyber solution.
Another organisation to be selected is Bob’s Business. Melenie Oldham from the Barnsley based Cyber Awareness firm is the Founder and Chair of the very successful Yorkshire Cyber Security Cluster, which is yet more proof that the Cyber Clusters can, and do, provide an environment and opportunities for cyber companies to help each other to grow and be successful.
Well done to the Cluster members and to all 10 of the selected organisations – Cyber Wales wishes you all the very best in your year of Cyber Advancement!
As a territory at the cutting edge of cyber defense and cyber security, Brittany welcomed the 3rd edition of the European Cyber Week, from November 19th to 22th 2018.
At this European event, organised in Rennes by the ‘Pôle d’Excellence Cyber‘ and its partners, the programme included technical conferences, business meetings and high-level events, addressing civilian and military stakes, around the thematic of Artificial Intelligence and Cyber Security, and its applications in the area of health, media and defense. Members of Cyber Wales met with representatives of the Pôle d’Excellence Cyber at the St David’s Day event in Brussels back in March and planning for this return visit began then.
Cyber Wales representative Dr Kerry Beynon, European data privacy expert, partner at RDP Law, joined an impressive group of panelists for a main stage discussion titled “From Silicon Valley to Start up Nation: which opportunities for European Valleys?”.
Fellow panelists included Laurent de Mercey the Directorate-General for Regional & Urban Policy at the European Commission, Bertrand Piechaczyk the Engineering Unit Director from Bretagne Développement Innovation, José Calvo Territory Director for the Salamanca Institute in Castilla y León, Javier Barriocanal the Head of the Basque Cybersecurity Center and Jarno Salonen the Director of the VTT Technical Research Centre of Finland.
Welsh Government Trade & Invest teams including Neil Sandford from Wales and Ruth Stockley from the EU office in Brussels worked hard to organise for a Trade Mission of Welsh businesses to attend the event and all the delegates were able to capitalise on how well Kerry positioned Cyber Wales and it’s role on the Global stage.
CYBERSEC EU is an annual public policy conference held at the ICE Congress Centre in Krakow, Poland dedicated to the strategic challenges of cybersecurity.
The conference is the flagship event of The Kosciuszko Institute a Founding Member of GlobalEPIC alongside Cyber Wales and this event was a perfect opportunity for representatives of the Ecosystems to meet and have a catch up.
One of the Institutional Patrons of the CYBERSEC Forum is the Cyberwatching Project, the European observatory of research and innovation in the field of cybersecurity and privacy, and this year the Project ran their inaugural Annual Workshop in the Auditorium in Krakow.
Cyber Wales representative John Davies, Co-founder & Chair of the South Wales Cyber Security Cluster, who proactively support the Cyberwatching Project, was invited to speak on stage at the Forum and as a Panelist in the Inaugural Workshop.
John joined: David Wallom, Associate Professor at Oxford University; Michel Drescher from the e-Research Centre at Oxford University; Raul Valera of AEI Ciberseguridad in Spain; Jose Ruiz, a senior cybersecurity expert at Atos; and Aitor Vieira from the CYBECO project, a collaboration between seven European institutions. The topic was assessing research outputs within the cybersecurity and privacy landscape.
On 4 & 5 October the Cyber Security Week Congress & Expo consisted of an exposition for national and international organisations to display their innovative cyber security solutions, a matchmaking programme with pre-arranged meetings, an Access to Capital event, an Access to Talent event and dozens of other cyber security related keynotes, sessions and workshops.
The CSW Congress and Expo was powered by The Hague Security Delta, a Founding Member of GlobalEPIC (the Ecosystem of ecosystems for Partnership and Innovation in Cyber) and took place at the Fokker Terminal in The Hague.
John Davies, Co-founder & Chair of the South Wales Cyber Security Cluster, attended the event to represent Cyber Wales and the Welsh Cyber Security Clusters at the GlobalEPIC Annual Symposium which was one of the independent events at the Congress.
The symposium marked the anniversary of the launch of GlobalEPIC and it was a terrific opportunity for the original 14 Ecosystems to come together again and also to meet representatives from the new Ecosystems who have joined GlobalEPIC over the previous 12 months.
The Ecosystem of ecosystems has grown since it was launched to encompass no fewer than 26 Cyber Security Ecosystems from 22 countries spanning 5 continents. New Ecosystems represented at the Symposium included the Massachusetts Institute of Technology (MIT), Taiwan, Turkey and the Basque Region of Spain.
Cyber Wales representative Damon Rands, CEO of Wolfberry Cyber Ltd was at the launch the new Dubai Cyber-Security Cluster in Emirates Towers in Dubai.
Damon, one of a number of Cyber Wales members who have operations in the United Arab Emirates (UAE), runs his organisation from the Emirates Towers and has formed strong links with other cyber businesses in the area since opening his offices there. Having been a long-standing member of the South Wales Cyber Security Cluster and pro-actively involved in the formation of Cyber Wales, Damon was able to share information and ideas about what makes a successful Cluster.
Working with the Dubai Police, the Dubai Futures Academy and other local cyber firms to help get this new Cluster off the ground, Damon is also continuing to foster close working relationships with Cyber Wales and promote the Region to other Welsh companies who could benefit from the businesses opportunities available in the UAE’s fast growing economy.
The new Cluster aims to bring together law enforcement, Government, industry professionals and enthusiasts towards the goal of advancing Cyber-Security in the UAE and more broadly, the Middle East.
The Cluster looks to support the initiatives and direction of the UAE Government and to help make local business more secure and resilient to attack by fostering knowledge sharing and the development of new skills and capabilities in the region.
Another Cyber Security Cluster has been formed under the umbrella of Cyber Wales.
Clare Johnson, Head of Cyber Security in the Faculty of Computing, Engineering & Science at the University of South Wales launched the Women in Cyber Cluster at the University’s City Campus in Newport on Tuesday afternoon.
Clare heads up the team who run the National Cyber Security Academy, a BSc (Hons) Applied Cyber Security degree course where students work directly on ‘live briefs’ from industry, so their training will stay relevant and address current issues and topics. This hands-on approach also enables students to gain industry contacts and understand what will be expected of them in the workplace when they graduate.
The Academy punches above its weight when it comes to female to male students as well as staff and Clare is keen to make this precedent the “norm” in an industry still predominantly populated by men.
The meetings provide a valuable way for women working, or hoping to work, in the cyber industry to meet and support each other.
Speakers are organised for each of the monthly meetings, but most importantly there is always plenty of opportunity to chat, share ideas and provide advice for each other in this dynamic industry.
The 11th International Conference on Security of Information and Networks (SIN-2018) organized by Cardiff University, School of Computer Science and Informatics, provides an excellent international forum for sharing knowledge and results in theory, methodology and applications of Security in information and networks.
The conference invites significant contributions from researchers and industrial working on the development of cryptographic algorithms, security schemes, cryptanalysis, application security, system security, cloud security and network security. The aim of the conference is to provide a platform to the researchers and practitioners from both academia as well as industry to meet and share cutting-edge advancements in the field of information and network security.
The event was attended by Universities and Institutes from around the world including the USA, Turkey, Australia, Russia and India and, in recognition of the role Cyber Wales now plays on the Global stage members of the Ecosystem were asked to participate.
Representatives from Cyber Wales contributed by staging a discussion panel. Moderated by John Davies Co-founder & Chair of the South Wales Cyber Security Cluster, and attended by Jason Davies Founder and Chair of the North Wales Cyber Security Cluster and Cyber Wales members Anthony Matthews of Charmwood Risk Management, Marie Caruso of Arcanum Cyber Security, Corporal Mark Howells of 53 Squadron of the Royal Corps of Signals in the British Army.
After a brief presentation on the background and scope of Cyber Wales the discussion was very much audience driven in what turned out to be a very interactive and engaging session.
Please note the information below from the National Cyber Security Centre (NCSC) about the CERT-UK Network Reporting (CNR) Service which, in case you are not aware, is another free NCSC tool.
This is available for any organisation on Cyber Security Information Sharing Partnership (CiSP), so unlike the Active Cyber Defence tools (which are only available for public sector bodies), the CNR service is for public & private sector bodies. NCSC promotes use of the service to CiSP members as another tool in an organisation’s defence armoury.
The CNR service scans for network abuse events on an organisation’s network, as well as vulnerable network services on an organisation’s Internet-facing services.
No infrastructure changes are required. An organisation just needs to be a member of CiSP to use the service, and then to provide its IP addresses/registered domain names, plus an up-to-date contact, which NCSC will send reports to, if we see any network abuse events or vulnerable network services on the organisation’s network.
An organisation can cease using the service at any time; however, we encourage CiSP members to use the service to help strengthen the overall cyber resilience of UK networks.
Information provided by Anna Lewis, Cyber Resilience Manager, Welsh Government, 0300 025 1948
Two pieces of GDPR guidance for cyber security professionals that have been published on the NCSC website:
1. Information page: The General Data Protection Regulation (GDPR) and what it means for cyber security. www.ncsc.gov.uk/GDPR
2. Guidance: A set of technical security outcomes considered to represent appropriate measures under the GDPR. Developed jointly by the Information Commissioner’s Office (ICO) and NCSC. www.ncsc.gov.uk/guidance/gdpr-security-outcomes
Many thanks and kind regards,
Policy Lead – Behaviour Change
Cyber Security Incentives & Regulation, DCMS
The Gulf Information Security Expo & Conference (GISEC) is not just one of the most impactful cybersecurity shows in the Gulf Region, but it is also the largest, overshadowing other events in terms of aspiration, diversity and scope.
In its 7th edition, GISEC welcomed over 7,000 cyber-specific visitors, and was co-located with IoTX and Future Blockchain Summit, and collectively they delivered over 12,000 visitors.
Cyber Wales members visited the United Arab Emirates on an Trade Mission earlier in the year to establish relationships with key organisations, assess the market opportunity and meet the Welsh Government Representatives. Having determined that there was a healthy business opportunity, Cyber Wales returned to attend this event and present a range of Welsh cyber solutions to attendees from all over the GCC Region.
A Cyber Wales stand was organised so that Wolfberry, Acuity Legal and Pervade Software could share the space which was opposite the UK DIT delegation stand on the exhibition floor.
The agenda was directed by a powerful Advisory Board of senior end-users from Dubai Electronic Security Centre, Dubai Police and Smart Dubai and Cyber Wales members were given speaking slots. South Wales Cyber Security Cluster members Damon Rands, Dr Kerry Beynon and John Davies all spoke on the Spotlight Stage
The success of this event has prompted a number of Cyber Wales organisations to set up operations in the United Arab Emirates.
In September 2014 the NATO Summit was held in Newport in Wales. The agenda placed a major emphasis on cyber security and this event was closely followed by the first Welsh Industry Cyber Summit in early 2015 organised by CEMET (the Centre of Excellence in Mobile and Emerging Technologies). The Summit was run again in April this year and this time it formed part of the Cyber Wales Ecosystem.
Cyber Wales Ecosystem includes cyber activities being carried out by Government, Business, Law Enforcement and Academia and this year’s Summit included sessions from each of these allies in the battle against cyber crime.
In partnership with CEMET, Welsh Government, Southern Wales Regional Organised Crime Unit (TARIAN), the University of South Wales and Cyber Wales, this event brought together experts in each field so that delegates could learn about the ever-changing threat of Cyber Crime and how to better protect their businesses.
John Davies, Co-founder & Chair of the South Wales Cyber Security Cluster delivered a key note talk at the opening of this prestigious event, describing the growth of the cyber security ecosystem in Wales, which is now an internationally recognised brand that encapsulates all aspects of cyber security in Wales and acts as a mark of expertise, quality and clarity in a complex and rapidly changing area of life.
CYBERUK is the National Cyber Security Centre’s (NCSC) flagship event on cyber security. Over three days, 2,000 people attended events covering both strategy (CYBERUK Leadership) and delivery (CYBERUK In Practice) – gaining up to date information and industry leading insights.
Leadership: The Government’s leadership event for business and public sector decision makers and strategists saw key senior staff – policy makers, CEOs and thought leaders – learning about and contributing to the development of the latest thinking on how cyber security and business acumen come together to deliver successful business outcomes. Speakers were drawn from the same community as the 600+ vetted delegates – Government, Academia, the Third sector, Critical National Infrastructure and Industry. Minister-led, this event featured senior representatives from GCHQ and the NCSC.
In Practice: Brought together 1200+ information security professionals including specialists in the design and development of online services and systems, plus professionals in procurement and delivery. It was an opportunity to share best practice, learn about the latest security threats and solutions, and consider the growing challenges we all face.
Welsh Government had a stand at the event showcasing the Cyber Wales Ecosystem and the breadth and depth of cyber expertise in Wales.
Cyber Wales representatives Clare Johnson, Head of Cyber Security for the Faculty of Computing Engineering & Science at the University of South Wales and John Davies, Co-founder & Chair of the South Wales Cyber Security Cluster helped to man the stand and answered questions about Welsh cyber capability.
This attracted attention from the Joint Cyber Unit, part of the Joint Forces Command, who volunteered to come to Wales and speak at a Cluster meeting about the exciting work of cyber in the Armed Forces as well as from various Government entities and cyber companies.
The prime minister Teresa May was in South Wales as part of her whistle-stop tour around the UK to mark one year to go until Brexit. BBC Wales political correspondent James Williams interviewed key industry leaders in various sectors to highlight the anticipated impact of Brexit.
In a news article which featured interviews with Rob Wainwright the Director of Europol, Alun Michael the Police Commissioner for South Wales Police and John Davies of Cyber Wales and Co-founder & Chair of the South Wales Cyber Security Cluster, the BBC asked how efforts to fight cyber crime might be effected post-Brexit.
Speaking about the need for close collaborative links between law enforcement agencies and cyber experts around the world, John said “a hacker sitting at a laptop in Bulgaria can attack a specialist company in Blaengarw, so the effort we all need to put in to tackle cyber crime is going to rise above any political boundaries”.
Rob Wainwright from Europol said “Wales plays its part in a very strong UK commitment in cyber and we are very pleased to have that association which we hope will continue in the future”.
Mr Wainwright, who is stepping down as the Head of Europol later this year also said that he was “personally very proud of the Welsh cyber commitment” as he himself comes from Carmarthenshire.
In a series of features on “Cybersecurity for small business”, journalist Rob Waugh quoted Cyber Wales in his article titled “What skills do we need to fight cybercrime?”.
The article states that most small businesses mistakenly think that hackers will not target them, according to research by analyst KPMG, with 51pc believing they won’t be targeted.
This is, however, a myth. In fact, hackers now target small businesses as a matter of choice, says John Davies, Co-founder & Chairman of the South Wales Cyber Security Cluster.
Mr Davies says: “Recently we have seen a huge rise in extortion attacks being aimed at smaller companies. It is far easier to get a thousand small businesses to pay £100 than it is to get a large corporate to pay off a £100,000 blackmail threat”.
“These attacks are indiscriminate. The best possible advice to small businesses is to prepare. Thankfully, this has been made easier through the availability of a best-practice framework, developed in the UK and readily available for all companies”.
The Government’s Cyber Essentials scheme has been designed to prepare businesses for the most common cyber threats and serve as a first step, along with the Small Business Guide, to improving cybersecurity awareness”.
The article also quoted Ciaran Martin the CEO of NCSC, Kevin Chapman an SVP at Avast, Cath Goulding the Head of IT Security at Nominet and John Shaw a VP at Sophos.
On the eve of St David’s Day, the feast day for the patron saint of Wales, Cyber Wales and the Welsh Government, with support from the Department of International Trade at the British Embassy to Belgium, organised a Trade Mission to Brussels.
Throughout the day, a diverse group of Cyber Wales Cluster members, including 10 companies and 3 universities, were able to make short presentations to potential clients and private partners in Belgium and enjoy several networking opportunities to mingle with the attendees.
Participating companies included; Acuity DataGuard, Cardiff University Airbus Centre of Excellence in Cyber Security Analytics, Astrix Integrated Systems, Awen Collective Ltd, Capital Network Solution Ltd, Crypto Quantique, Morgan & Morgan, Pervade Software, Safonda Limited, Swansea University – CHERISH Digital Economy Research Centre, University of South Wales, Wolfberry, and Xcina.
The event was also attended by representatives of other Global Cyber Ecosystems including L-SEC from Belgium, The Kosciuszko Institute from Poland, both fellow founding member of the GlobalEPIC (the Ecosystem of ecosystems for Partnerships and Innovation in Cybersecurity), and the Bretagne Cyber Valley from Brittany, France.
Keynote speeches were given by:-
- Sir Julian King, EU Security Commissioner
- Prof Mark Drakeford AM, Welsh Government Cabinet Secretary for Finance
- Alison Rose, British Ambassador to Belgium
- John Davies, Co-founder & Chair of the South Wales Cyber Security Cluster
- Ulrich Seldeslachts, Belgian Cyber Security Cluster (L-SEC)
- Fabian Vandenreydt, Executive Chairman B-Hive European Collaborative Platform (B-Hive)
- Luigi Rebuffi, Secretary General & Founder European Cyber Security Organisation (ECSO)
- Alain Courtois, Chief of Contracting, NATO NCI Agency
Also during the day Cyber Wales signed a Memorandum of Understanding (MoU) with B-Hive, a European collaborative innovation fintech platform that brings together major banks, insurers and market infrastructure players.
The day’s programme culminated in a fantastic networking reception at the Residence of the British Ambassador, HMA Alison Rose, jointly hosted by The Cabinet Secretary for Finance for Welsh Government, Mr Mark Drakeford AM. More than 300 business people from Belgium, France, Brittany & Poland attended the event which featured specially imported Welsh cuisine like Welsh Cakes, Bara Brith and drinks from the Penderyn Distillery including seaweed flavoured gin!
Cybertech Tel Aviv 2018 Conference & Exhibition, drew more than 15,000 visitors from around the globe, and over 200 companies exhibited their innovative technologies and solutions in the cyber domain.
This is the flagship event for CyberSpark, the Israeli Cyber Innovation Arena in Beer-Sheva. A joint venture of the Israeli National Cyber Bureau in the Prime Minister’s Office, Beer Sheva Municipality, Ben Gurion University of the Negev and leading companies in the cybersecurity industry. CyberSpark are also a Founder Member of GlobalEPIC (the Ecosystem of ecosystems for Partnership and Innovation in Cybersecurity) alongside Cyber Wales.
Cyber Wales representative, Dr Kevin Jones, Head of Cyber Security Architecture, Innovation and Scouting at Airbus attended the event and joined representatives from other GlobalEPIC ecosystems on a panel discussion on the need for global collaboration on cyber challenges.
Kevin also spoke at the event on ICS/SCADA security, a particular area of specialty for the Airbus team in Newport, Wales and for Kevin himself.
Dr Kerry Beynon, representing Cyber Wales was at the launch of the new IP Wales Cluster in the Great Hall of the amazing new Swansea University campus.
In October, Hillary Clinton visited the Campus to receive an honorary degree of Doctor of Laws in recognition of her commitment to promoting the rights of families and children around the world and to unveil a commemorative stone to mark the renaming of Swansea University’s College of Law & Criminology to the “Hillary Rodham Clinton School of Law”. Hillary Clinton’s family originates in Wales with Great Grandparents from Abergavenny, Llangynidr and Pembrokeshire who emigrated to the USA to start the famous Pennsylvania family.
The Hillary Rodham Clinton School of Law sponsored the launch of a new member of the Cyber Wales Ecosystem – the IP Wales Cluster – being run in conjunction with IP Wales, an award winning business support initiative operating out of the School. IP Wales recognises that cybercriminals are increasingly coming to recognise the value of confidential data held by Welsh SMEs, be it sensitive information about the business operation or customer information.
The aim of both IP Wales and the new IP Wales Cluster is to help Welsh SMEs in their use of the Intellectual Property system with close working relationships with the World Intellectual Property Organisation (WIPO) and the UK Intellectual Property Office. Andrew Beale, Associate Professor at Swansea University gave a presentation on the IP Wales Cybercrime initiative (2017-2020).
Dr Kerry Beynon of Acuity Legal, is a Trustee of the University and works hard to protect the IP of organisations large and small.
Now in its seventh year, this year’s Cyber Threat Summit had a very European focus.
The largest event of its kind, this year attracted cyber security experts from all over Europe to discuss all aspects of cyber security including issues such as GDPR and the NIS Directive. There were three distinct streams running concurrently; “Strategic”, “Operational” and “Technical”. Delegates also saw the introduction of a Cyber Startup Zone giving innovators a chance to shine and network with potential investors.
Cyber Wales representatives, Jason Davies Founder & Chair of the North Wales Cyber Security Cluster and John Davies Co-founder and Chair of the South Wales Cyber Security Cluster, attended the event to fly the flag for Cyber Wales.
John was a main stage speaker at the event as a Country Representative for Wales.
Representatives from each European Member State were invited to present on the state of cyber security in their countries, current cyber threats and examples of innovations in cyber security emerging from their cyber communities. John described the flourishing ecosystem in Wales, shared the recent announcement about the launch of GlobalEpic and assured delegates that Wales was open to collaboration and partnerships across Europe and beyond regardless of BRexit.
Cyber Wales took pride of place at the launch of the new GlobalEPIC initiative at the 3rd European Cybersecurity Forum – CYBERSEC 2017 in Krakow, Poland as one of the 14 founding members bringing together the world’s foremost cyber security communities from 10 countries spanning 3 continents.
Representing Cyber Wales at the launch were John Davies Co-founder & Chair of the South Wales Cyber Security Cluster, Jason Davies Founder & Chair of the North Wales Cyber Security Cluster and Nadine Payne Business Development Office at Cardiff University Research & Innovation Services.
The Global Ecosystem of Ecosystems Partnership in Innovation and Cybersecurity (Global EPIC) has been founded to enable the future securely through the development and sharing of new knowledge in the field of cyber security – leading to societal, economic and technological impact in a timely fashion. It will do this by building a global community of innovation ecosystems who will collaborate on projects and share expertise through an expanding network of diverse organizations. This initiative will see 14 global ecosystems co-creating and adopting world-changing solutions to high-impact cybersecurity challenges, both current and emergent. The ecosystems involved come from 10 different countries spanning three continents, reflecting the truly global nature of the partnership.
Cybersecurity threats are a global challenge disrupting local modern living. That hardly a day goes by without news of yet another harmful attack, suggests our current approaches to cybersecurity are failing. Isolating cybersecurity as its own ‘special domain’ misreads its inherent embodiment in all sectors and levels of society. Consequently, new approaches need development if we are to achieve the global and local benefits offered by cyber and cyber-enabled technologies.
14 leading global cybersecurity ecosystems
Across the globe, ecosystems that bring together academia, industry and government operate to respond to cybersecurity threats and enable economic development opportunities. The 14 involved ecosystems have largely developed independently, driven by local and national objectives. The leaders of these keystones have become aware that the challenges of cybersecurity require global paradigm-shifting partnerships and cooperation that reflect regional and local imperatives. Underpinning this perspective is a conscious attempt to ‘glocalise’ – localise the global and globalise the local.
Dr Godfrey Gaston, director of the Centre for Secure Information Technologies (CSIT), one of the co-founding organizations, said “The formal launch of Global EPIC represents an escalation of global cybersecurity innovation ecosystem collaboration to tackle head on the challenges citizens, businesses and governments face in supporting the shift to an interconnected digital economy. It is a win/win for organizations and regions involved and we at CSIT are proud to be a founding keystone organisation.”
Izabela Albrycht, chairperson of the Kosciuszko Institute and chair of the CYBERSEC Organizing Committee said, “Building a global knowledge sharing community with cross-sectoral stakeholders is a must, in the face of rapidly expanding cyberthreats. Today, here in Krakow, we are laying the foundations of the partnership which, as we hope, will bring innovators at the forefront of the fight against emerging cyber-challenges.”
“I expect important economic benefits, such as job creation, revenue enhancement and investment,’’ noted Dan Craigen, director of Carleton University, Canada’s Global Cybersecurity Resource (GCR), which equips high growth companies with the skills, resources and linkages required to develop novel cyber products and services, with the explicit intent that companies must scale globally and securely to succeed.
CyberSpark, Israel CEO Roni Zehavi said the organization ‘commences a new era, on which the being and doing at the local level would turn into a sustainable and well-orchestrated operation at the global one’.
Global EPIC has set a target of 50 member cyber security ecosystems by October 2020. The 14 ecosystems in the group at present are:
- bwtech@UMBC (Baltimore, U.S.A.)
- Centre for Secure Information Technologies – CSIT (Belfast, U.K.)
- Cyberspark (Be’er-Sheva, Israel)
- CyberTech Network (San Diego, U.S.A.)
- Cyber Wales (Cardiff, U.K.)
- Global Cybersecurity Resource – Carleton University (Ottawa, Canada)
- Innovation Boulevard (Surrey, Canada)
- INCYDE (Madrid, Spain)
- LSEC (Heverlee, Belgium)
- Politecnico di Torino (Turin, Italy)
- Procomer (Heredia, Costa Rica)
- The Hague Security Delta (The Hague, Netherlands)
- The Kosciuszko Institute (Krakow, Poland)
- The Canadian Institute for Cybersecurity (CIC), University of New Brunswick (Fredericton, Canada).
Content from an article posted on October 16, 2017 by Nitin Dahad in The Next Silicon Valley online magazine