New NCSC assurance initiatives to help boost confidence in cyber resilience

NCSC

The National Cyber Security Centre (NCSC) – a part of GCHQ – has announced two initiatives to help improve national cyber resilience.

The new Cyber Resilience Test Facilities (CTRFs) programme is developing a national network of assured facilities which will allow technology vendors to demonstrate the cyber resilience of their products in a consistent and structured way, enabling independent audits and assessments by public and private sector organisations, including the UK government.

The CRTFs will adopt a Principles-Based Assurance (PBA) methodology, moving away from traditional compliance-based schemes, to enhance consumer confidence in the cyber resilience of products and broaden the range of assured products.

The NCSC will also be launching a new scheme for Cyber Adversary Simulation (CyAS) in early summer. Companies assured under the Cyber Adversary Simulation Scheme will deliver services to test an organisation’s cyber resilience, including their ability to prevent, detect and respond to simulated cyber attacks.

Both of these initiatives have been formally announced at this year’s CYBERUK, the government’s flagship cyber security conference.

They are the latest in the NCSC’s efforts to help organisations bolster resilience and work towards addressing concerns raised by CEO Richard Horne in December 2024 about the growing gap between cyber threats and existing defences.

“The Cyber Resilience Test Facilities and Cyber Adversary Simulation schemes mark a significant step forward in our mission to enhance the UK’s cyber resilience,” NCSC Director for National Resilience Jonathon Ellison said. “The test facilities will allow consumers to be more confident in the security of connected products.

“And through testing their response to simulated cyber attacks, the UK’s most critical infrastructure will be further empowered to defend against evolving online threats.”

The CyAS scheme has been developed in partnership with cyber oversight bodies, cyber regulators and government, who are exploring the use of the scheme in their sectors.

It has been designed as a means of providing end-to-end assurance and evidence for any organisation of sufficient maturity and criticality to test their cyber defences.

The scheme will launch as a Minimum Viable Product and is expected to evolve as the user community grows.

Find out more about CRTFs by visiting the NCSC’s Cyber Resilience Testing pages here.

To read more NCSC news, click here.

Share
Tweet
Post

Related posts

SITE MENU

Main Menu
Main Menu
Main Menu
Main Menu
Main Menu

READY TO TALK?

BOOK A MEETING

CONTACT US

+31 (0) 53 23 40 650
+44 (0) 7841 693979
sayhello@securityonscreen.com
Security on Screen B.V. Broekhoekweg 34, 7581 PT Losser, The Netherlands
Linkedin Twitter Facebook

FOLLOW US & SUBSCRIBE

Enter your email and subscribe to our newsletter

Copyright © 2022 Security on Screen by the Security Industry Group
Privacy Policy

Scroll to Top