Latest announcements from The Cyber Scheme
At CyberUK 2024, we took special note of the keynote speech from Saqib Bhatti MP, Parliamentary Under Secretary of State at the Department for Science, Innovation and Technology.
“Having more skilled people in the industry – and across the wider economy – is a fundamental part of our strategy. The UK must have a sustained supply of diverse and high-quality individuals in the cyber workforce. So we’ve been working with the UK Cyber Security Council to improve career pathways and professionalisation.
At the moment it can be difficult to define what ‘good’ looks like in the cyber security profession. The UK Cyber Security Council has now developed professional titles so cyber security practitioners can demonstrate the skills that they have, and prove their capability to employers. By having a common standard across the workforce, we will ensure that employers get the skilled staff they need and that quality cyber professionals are in the jobs that are protecting our businesses and national security.”
The government has committed to embedding professional titles across the public sector cyber workforce by 2025. Regulators of critical national infrastructure and members of techUK have also signalled their support for professional titles.
The Cyber Scheme have been working closely with the Council on the development of professional titles for security testing and incident response specialists and we’re fully committed to this direction of travel. While progress has been slower than some may have hoped (not unexpected given the amount of work going on behind the scenes), we’re very happy to see the paper released by HM Government yesterday announcing the adoption of UK Cyber Security Council Standards.
The Cyber Scheme are delighted to announce that, alongside our strategic partners The Chartered Institute of Information Security (CIISec), we are one of the first ever Licensed Bodies for Cyber Security Chartership in the UK.
The UK Cyber Security Council gained their Royal Charter, allowing them to issue such licenses, in 2022 with the aim of professionalising the cybersecurity industry.
The Cyber Scheme are able to assess and recommend the registration of individuals for Chartership for the Security Testing specialism. We are also currently developing the Incident Response specialism, for both Chartered and Principal levels.
CIISec are able to assess and recommend the registration of individuals for Chartership at Chartered, Principal and Associate levels for three specialisms:
– Secure System Architecture and Design
– Cyber Security Governance and Risk Management
– Cyber Security Audit and Assurance
These appointments were achieved after we ran successful pilot programmes in which we worked closely together and with The Council, and the industry to evaluate and test technical elements, processes, policies and procedures around the application and assessment of individuals at Chartered, Principal and Associate levels – including examination, moderation and appeals.
The Cyber Scheme’s CEO Charles White says: “We’re pleased to announce that we have become a Licenced Body for the UK Cyber Security Council. The professionalisation of the industry is well overdue, especially as we look to counter the growing threat of cybercrime. A chartered organisation which reflects an individual’s experience, skills, and knowledge is critical for UK Plc growth and crucial for those employing such skills. “I’m also delighted to be able to announce our appointment alongside CIISec who have also become a Licenced Body, a close working partner of The Cyber Scheme and a voice for the industry as a whole.”
CEO of CIISec Amanda Finch says: “The Chartered Institute of Information Security (CIISec) is so pleased to be one of the first Licensed Bodies for the UK Cyber Security Council alongside The Cyber Scheme. We have already welcomed through many newly-chartered individuals to the industry, and look forward to chartering many more to come.”
Annmarie Dann, Director of Professional Standards for the UK Cyber Security Council said: “’We are delighted to be working in partnership with CIISec and The Cyber Scheme as we officially open for applications. This comes after our much-anticipated awards ceremony to celebrate the first 100 individuals who have obtained a Professional Registration Title through the Council. We are excited to see many more practitioners complete the process and flourish within the sector. By working closely with the Council and our Licensed Bodies you can be a part of cyber security’s future”.
Both The Cyber Scheme and CIISec are now taking applications for Chartership, and will shortly be publishing the application forms and supporting candidate guidance to allow experienced members of the cyber security industry to begin their journey towards becoming Chartered Members. For further information please email – [email protected] or [email protected]
NCSC Annual Review
The NCSC has released the 2023 annual review looking back at some of the key developments and highlights between the 1st of September 2022 to the 31st of August 2023.
The report covers established schemes such as CHECK in addition to initiatives new this year including the Cyber Advisor scheme. The review also looks to the future of the cyber security landscape and what this means for the industry.
In addition to exploring the current NCSC schemes and initiatives the report looks at the future threats of the cyber security industry as well as technological advancements such as AI and what this means for us as a profession.
CiiSEC Live 2023
The Cyber Scheme’s CEO Charles White and Communications Director Debi McCormack are speaking at CiiSEC Live on the 22nd of November in Manchester.
The Cyber Scheme is proud to sponsor CiiSEC Live, and we will also be available to discuss our NCSC certified and assured training and exams, at our dedicated stand in the Innovation Suite.
Get your tickets at the link below to secure your place and listen to The Cyber Scheme’s talks.
Debi McCormack, Communications Director for The Cyber Scheme is featured in October’s CiiSEC Pulse Magazine.
Debi’s article: “Inspiring the next generation – it has to be a good news story” illustrates the importance of encouraging those new to the industry, either fresh out of education or transitioning from different industries, to help shape the next generation of cyber security professionals.
“It’s our responsibility as people already in this profession to train the next generation of leaders to be critical thinkers, to build people who are better at this than we are, to embrace diversity, and to teach and support the ‘human’ and ethical side of cybersecurity. Give them something to aspire towards – whether it’s certification, role development or financial reward (talk to any company who deals with staff poaching and they will know this is still a major motivator).”
The Cyber Scheme Appoint Technical Advisory Board
The Cyber Scheme’s Technical Advisory Board (TAB) held their inaugural session on the 20th of October. The TAB consists of high level industry partners whose role is to assist in shaping The Cyber Scheme’s processes, governance and standards as we continue to grow and expand our service offerings.
The members of the TAB (pictured left to right):
Alexandra Miller (Mazars), Chair: Dave Hartley (NCC Group), Jody Allen (Cyberis), Paul Richards (The Cyber Scheme), Vice-Chair: Toby Flaxman (Tian Digital Security), Andy Jones (The Cyber Scheme), Dave Daly (CODA Security), and not pictured is Sarah Knowles (Shift Key Cyber)
Read CiiSEC’s The Security Profession Report 2022/23
CiiSEC’s report on ‘The State Of The Profession’ is now available. This report is a culmination of the results from CiiSEC’s Information Security Profession survey circulated earlier this year.
With 302 responses to the survey, this report provides valuable insight into the current cyber security climate from the view point of cyber professionals. As well as covering employment data the report also illustrates industry trends, such as how organisations react to cyber attacks.
Our CSTM Practitioner Course has been recognised as Assured Training by the National Technical Authority (NCSC)
This will help individuals and organisations identify this five day training course as the highest quality available.
With the abundance of cyber security training courses on offer, it can be difficult to identify highly competent trainers and good quality courses. NCSC Assured Training addresses this issue – providing rigorously assessed training courses to select from. The evaluation was carried out independently by APMG who studied the course material, interviewed our Lead Assessor Paul Richards and also scrutinised our administration processes, course facilities and certification. This was a truly comprehensive assessment process, as it should if this is to be perceived as acknowledgement of the highest quality cyber security training available.
CSFL: The Cyber Scheme Foundation Level
New entry level training and assessment from The Cyber Scheme: bridging the gap between formal education and industry-ready practitioner.
The Cyber Scheme’s new Foundation Level (CSFL) assessment is designed for anyone wishing to begin a career in technical cyber security.
This comprehensive assessment, with corresponding training course, is aimed at the junior and/or graduate security tester. The training will highlight and enhance the skills and knowledge required at this level, whilst the exam will measure competence.
The core aim of the CSFL is to give candidates the fundamental skills and knowledge to begin the journey towards becoming a certified security tester. We hope anyone taking this training and exam will expedite their progress to CSTM, or equivalent, and be able to demonstrate the practical knowledge employers are looking for.
Find out more about the exam and training here.
The UK Cyber Security Council has mapped 16 specialisms built on knowledge areas within the CyBOK: Cyber Security Body of Knowledge. All certifications offered by The Cyber Scheme have now been mapped to the Council’s certification framework. Have a look at their certification mapping tool here:
It’s now a month since The National Cyber Security Centre (NCSC) launched the Cyber Advisors scheme to help smaller organisations achieve key cybersecurity controls and standards. The Cyber Scheme reflects on experience gained – why the scheme was launched, how it has been received and what stakeholders can learn from going forwards.
Read the full press release here
Andy Jones becomes Chair of the Professional Standards Working Group at the UK Cyber Security Council
The UK Cyber Security Council has appointed Andrew Jones as Chair of its Professional Standards Working Group. This appointment reflects Andy’s many years of contribution to the development of the UK’s cyber security industry, including a two-year period as service owner for several CESG (now NCSC) assured services covering product assurance, Certified Consultancy, Cyber Essentials, and Assured Penetration Testing (CHECK).
Read the full press here
The Cyber Scheme team attended CRESTCon earlier in the month. Our CEO Charles White and Operations Director Sean McCormack attended the leadership dinner on the 17th. Whilst our Communications Director Debi McCormack and our Marketing Executive Emily Kinsella attended CRESTCon on the 18th of May.
It was a great opportunity to further work towards The Cyber Scheme’s and CREST’s collaboration and catch up with members of the industry.
The National Cyber Security Centre (NCSC) has announced the full launch of its Cyber Advisors scheme to help smaller organisations achieve key cybersecurity controls and standards.
The Cyber Scheme are currently the only Accredited Assessment Provider for the scheme, developed and delivered in partnership with IASME.
Our CEO Charles White has been interviewed by Rela8 Group Ltd as part of their Technology Leaders Club – the theme was ‘Why Cyber Security isn’t just an IT problem’
Our Marketing Executive Emily has successfully completed a course in website accessibility
The Cyber Scheme believe everyone should have access to a career in security testing. We are able to make allowances (where possible) for any candidate who requires special support during training and examinations. Access to all of our facilities is suitable for people with mobility concerns. We provide extra information such as location images and maps when needed at point of booking, reducing anxiety for any candidate who needs additional support. And our new website has been designed with increased functionality thanks to the learnings Em Kinsella took from her recent completion of the Introduction to Web Accessibility course at edX.
Small, ongoing steps towards supporting anyone with neurodiversity who wishes to learn with us. Important ones nonetheless.
Hear what our Marketing Director Debi has to say about the Wild West of security testing standardisation
Debi will be speaking at #UKCyberWeek on 5 April 2023 at the Business Design Centre, London.
She will be discussing developments around Chartering the cyber security industry, what this means for security testers and how The Cyber Scheme hopes to fill the gap…
Register for your free ticket here
We're attending CyberUK 2023 in Belfast
The Cyber Scheme will be out in force at NCSC’s flagship event on April 18-19. Come and visit us at our stand to learn how we are working with NCSC on various projects, notably the launch of the Cyber Advisor assessment scheme.
Find out what’s happening here