Skip to main content

Government Departments: Cybercrime

Question for Cabinet Office

UIN HL2332, tabled on 9 March 2020

To ask Her Majesty's Government whether a risk assessment has been carried out to assess the implications of not reviewing the minimum cyber security standards for Government departments.

Answered on

23 March 2020

The Minimum Cyber Security Standard for Government was introduced in 2018, drawing on the expert technical advice of the National Cyber Security Centre (NCSC).

The Government Security Group is working with departments, including NCSC and Government Digital Service, to understand what changes, if any, need to be made to the Minimum Cyber Security Standard. This review is already underway and is intended to be an annual activity with updated standards published on GOV.UK accordingly. Over time, the measures will be incremented to continually ‘raise the bar’ to keep pace with a changing threat and ensure appropriate management of risk.

Answered by

Cabinet Office