RSS Alerts

Share

More services

Related Links

Related Stories

  • NIST proposes national cybersecurity education and training plan
    The National Institute of Standards and Technology (NIST) has unveiled a draft plan to promote cybersecurity education and develop a cybersecurity workforce for the 21st century.
  • Beware of scam tax return emails
    With under a week to go before the taxman starts fining people for failing to file their tax returns on time, Websense has warned that internet users should beware of the latest rash of scam emails that supposedly come from HMRC.
  • HMRC tax problems quickly tapped by cash hungry hackers
    It seems that the tax code problems that HMRC admitted to over the weekend, which will result in tax rebates plus extra bills for as many as six million PAYE taxpayers next financial year, have been seized upon by hackers looking for new sources of illegal revenue.
  • HMRC phishing attacks offer cash rebate as lure
    Yesterday was the last day in which UK taxpayers could file their 2008/2009 tax returns online – without getting fined for being late – and HMRC reports that tens of thousands of fraudulent phishing emails were sent out last week.
  • Guidance Software intros EnCase Cybersecurity forensics software
    Guidance Software has added EnCase Cybersecurity to its range of Encase forensics software packages which are used by the police and government investigators worldwide.

Top 5 Stories

News

HMRC's failure to recruit security staff shows education must change

18 January 2012

Her Majesty’s Revenue and Customs (HMRC) monthly statement on its structural reform plans, published last week, shows that it has failed to meet targets for the recruitment of cybercrime investigators.

The target had been the creation of a team of cyber crime investigators and the launch of cyber crime initiatives to counter the increased threat of attacks on HMRC systems, and its customers who use the internet, by the end of November 2011. This will not be achieved until the end of February.

Frank Coggrave, general manager at Guidance Software, is not surprised. “Cyber security has been undervalued and underestimated over the last five to ten years,” he says, “and training those experts needs to be not only about dealing with the here and now, but more crucially, anticipating what cyber criminals are going to do next.”

Coggrave takes heart in HMRC’s delay. “It is actually positive that HMRC is taking its time to complete the recruitment process, as hopefully this means their investigators will have all the necessary skills needed.” The problem is the complexity of the challenge. “A good cyber security person needs more than just certifications on security products,” he continues, “they need an analytical and forensic mind and they need to be able to investigate. These qualities are rare, and anything we can do to support these professionals should be encouraged.”

This comes against a backdrop of wider concerns about general computer education in the UK. Michael Gove, the Secretary of State for Education, has announced plans to revolutionize school computer education, currently called Information and Communication Technologies (ICT). It is, he says, ‘boring’; and he hopes to harness the cloud and ‘open source’ to improve things. “Instead of children bored out of their minds being taught how to use Word and Excel by bored teachers,” he suggests, “we could have 11-year-olds able to write simple 2D computer animations using an MIT tool called Scratch. By 16, they could have an understanding of formal logic previously covered only in University courses and be writing their own Apps for smartphones.”

It is current ICT schools training that has produced the bulk of our current security staff. “Traditional security skills have degenerated into simply patching firewalls,” says Coggrave. “However in today’s cyber security environment, it’s essential to have the forensic and analytical expertise to review incidents and take control of them.” Michael Gove is determined to start the process in our educational system.

This article is featured in:
Internet and Network Security • Public Sector  • Security Training and Education

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012