David Carroll, Cyber Security QinetiQ
Protective monitoring is one of the 10 Steps to Cyber Security as specified by the Cabinet Office, CPNI (Centre for the Protection of National Infrastructure) and BIS (Department for Business Innovation & Skills). Eighteen months after the issue of the guide, the adoption of protective monitoring remains limited to large Whitehall departments. Why is this?
One of the barriers to adoption cited by the wider public sector is cost, despite the bar having been set low by government. As budgets are squeezed further, there is a danger that Cyber Security will be neglected unless we discover ways to drive down the cost and improve the standard of this vital protective service. The best way to do this is to encourage government departments to share costs and procure collectively, rather than to either buy piecemeal or adopt in-source strategies, both of which increase the TCO associated with monitoring.
In a seminar that I’ll be giving at the Public Sector Show, 13 May 2014, at ExCel in London, entitled ‘Protective Monitoring: Removing Barriers to Adoption, Improving Quality’ I will make the case for sharing across central and local government, and examine how industry can play a part by introducing flexible, consumption-based service models that offer greater affordability.
QinetiQ’s fully managed protective monitoring service delivers 24x7x365 monitoring, alerting and incident management support. We enable customers to meet GPG13 guidance, and comply with standards, including PCI DSS, ISO 27002:2005, the Cabinet Office Security Policy Framework and the GSi Code of Connection, while reducing overall expenditure.
Come and speak to us at Stand 280 at the Public Sector Show, or contact us for more information about how we can help you stay safe.