National Cyber Security Centre
More universities strengthening their cyber security
The proportion of UK universities achieving Cyber Essentials certification has almost trebled in a year.
- UK universities achieving Cyber Essentials certification nearly trebles in a year
- National Cyber Security Centre’s certification scheme helps organisations protect themselves against common online threats
- Figures also show nearly three-quarters of higher educational providers now have dedicated staff for cyber security
The proportion of UK universities reaching the government-backed standard for cyber security has almost trebled in a year, new figures have revealed.
The figures show an increase from 14% to 40% over the past year in UK universities achieving Cyber Essentials, a certification scheme run by the National Cyber Security Centre (NCSC), part of GCHQ.
Cyber Essentials is the NCSC’s government-backed, industry-supported scheme to help organisations protect themselves against common online threats, such as phishing campaigns. Organisations must achieve certain industry-approved security requirements to gain certification.
The rise in universities gaining Cyber Essentials was revealed in the latest annual Cyber Security Posture Survey from JISC, an organisation which works to highlight the importance and potential of digital technologies for UK education and research.
JISC’s survey, which provides key insights into how UK universities and colleges are approaching cyber security, also found:
- almost a third of colleges have gained the Cyber Essentials certificate;
- nearly three-quarters of higher educational providers have now recruited staff for dedicated cyber security roles;
- 66% of providers have appointed a strategic cyber security lead.
Sarah Lyons, NCSC Deputy Director for Economy and Society, yesterday said:
It is extremely encouraging to see such a significant rise in universities and colleges investing in their cyber security.
Given the NCSC assessment that it is a realistic possibility that the cyber threats facing universities will increase, we will continue to work closely with the education sector to enable more institutions to achieve this industry recognised standard.
The NCSC works closely with the academic sector to improve its security practices and to help protect education establishments from cyber threats.
Earlier this year the organisation released its first threat assessment for universities, which highlighted the kinds of threats universities face and the steps they can take to counter them.
In the NCSC’s 2019 Annual Review, academia appeared second in the list of top five sectors which received the most support from the organisation’s Incident Management team.
Latest News from
National Cyber Security Centre
Diversity and inclusion in cyber security workforce revealed for the first time29/07/2020 11:15:00
NCSC vows to drive cross-sector improvement as joint report with KPMG reveals more to be done to improve experiences and opportunities.
NCSC announces Lindy Cameron as new CEO28/07/2020 16:15:00
Lindy Cameron has been announced as the new CEO of the National Cyber Security Centre.
Cyber innovators set on fast track to success28/07/2020 14:15:00
The NCSC welcomes 6 new start-up companies onto the Cyber Accelerator programme.
Alert: Potential legacy risk from malware targeting QNAP NAS devices27/07/2020 16:38:00
A joint NCSC and CISA alert detailing the legacy risk of the malware Qsnatch to QNAP NAS devices.
Defences tested as cyber attackers take aim at UK sports sector23/07/2020 14:15:00
New report on the cyber threat to sports organisations reveals a range of attacks by hackers.
UK and allies expose Russian attacks on coronavirus vaccine development17/07/2020 16:15:00
Joint advisory details APT29’s ongoing campaign to target organisations involved in COVID-19 vaccine development.
NCSC statement: cyber attack on Twitter17/07/2020 11:15:00
An NCSC statement on the reported attack on Twitter.
Government advances plans to boost security of smart products17/07/2020 08:12:00
New details on proposals to bring security requirements for smart devices into law.