The UK government may have spent £1 billion over the last five years to bolster the country's overall levels of cyber-security, but this investment has been essentially ineffective.
So says Alex Dewedney, Director Cyber Security and Resilience at CESG (part of GCHQ, which advises organisations on how to defend against threats), who told the RSA conference that broadly speaking, the UK is failing to win the fight on cyber-security.
Legacy let-downs
Instead, he argues, the government needs to spend money on fixing legacy IT issues which stand as gaping holes ready to be exploited – these are basic measures going ignored, and they should be sorted before moving on to more sophisticated defensive measures.
Dewedney said that when he'd argued this line with his bosses, they flat out told him: "I'm not spending cyber-security programme money to subsidise other departments' IT budgets."
There are other major issues around cybercrime in the UK, as we've heard recently – including the fact that reported security breaches are the tip of the iceberg, with the majority going unreported. That is, of course, because the affected business fears the damage that will be done to its reputation.
Via: V3.co.uk