04:05
ISSUE 4
“These perspectives underline the critical need for mandatory cybersecurity standards across all industries, especially for those working closely with
This incident is not a one-off case. Last August, another external service provider Zaun - which provides perimeter security to UK military facilities - suffered a data breach where 10GB of data was stolen by the LockBit ransomware group. These breaches underscore the vulnerability of external contractors in handling sensitive military data. The Broader Risks in the Defence Sector For example, PwC points out that those vendors/third-parties are a high risk in cybersecurity, especially when thorough assessments and remediation are lacking. It stresses the importance of implementing strong cyber risk management practices and ensuring that vendors and subcontractors follow strict cybersecurity standards. Without such measures, the entire supply chain, including defence contractors, remains vulnerable to attacks ( PwC ) Additionally, professionals in the UK have echoed concerns about the cybersecurity shortcomings of contractors. As noted in a report on cybersecurity in the construction industry, there is a growing recognition among UK businesses that many contractors do not have adequate security measures in place, making them attractive targets for cybercriminals. This is particularly concerning in sectors like defence, where the stakes are high, and the consequences of a breach could be severe (Construction Wave).
government and defence sectors.”
These perspectives underline the critical need for mandatory cybersecurity standards across all industries, especially for those working closely with government and defence sectors. The Call for Stronger Cybersecurity Standards PWC point out that industries dealing with critical national infrastructure, such as defence and construction, need mandatory minimum cybersecurity standards enforced by regulation. They believe organisations are unlikely to invest adequately in cybersecurity tools and practices without these regulations. Further to this, the UK’s National Cyber Security Centre has been actively promoting similar strategies
Made with FlippingBook - Online magazine maker