Monday 27 November 2017
Guernsey must ensure it has the strongest possible grounding in cyber security if it is to continue thriving as a stable and prosperous economy, the Committee for Home Affairs has said as it publishes its new Cyber Security Strategy.
Cyber security describes the technology, processes and safeguards that are used to protect networks, computers, programs and data from attack, damage or unauthorised access.
Guernsey is a digitised society and technology drives, or enables, every part of island life, from social interaction, through healthcare to education and business. The transformation brought about by this digitalisation creates new opportunities and regrettably new threats.
The Cyber Security Strategy seeks to ensure the island is as prepared as possible to combat those threats.
Deputy Mary Lowe, President of the Committee for Home Affairs, said:
'Over the last couple of years, we have all become increasingly aware of the threat of cyber criminality, for example the high-profile attack on the NHS; indeed the UK recognises cyber security as a tier 1 threat alongside things such as international terrorism.
'While Guernsey has a low crime rate, unfortunately cyber-crime doesn't recognise geographic boundaries. As we ensure Guernsey remains safe and secure for islanders and business, it is important that we have a strategy for dealing with this.
'This strategy sets clear goals and objectives along with timelines for them to be delivered. We will continue working with partners in both Jersey, the UK and Europe - similar to how we collaborate on matters such as economic crime and anti-money laundering.'
The Strategy considers three broad areas:
The Strategic Level
Where a cyber incident may cause serious damage to human welfare on a national level. This could affect the core functioning of government, have a major impact on our critical national infrastructure or have a significant impact across any of our principal business sectors.
The Tactical Level
Where a cyber incident has a significant and severe impact on a particular sector but not a national level effect. This could include an attack affecting a specific part of government, a targeted attack on a specific business sector or a discrete part of our critical national infrastructure.
The Operational Level
Where a cyber incident has an impact on a discrete group of individuals or businesses. These are likely to be characterised by attacks against an individual, or group of individuals, or a single business.
The Cyber Security Strategy can be read in full in the downloads section on this page or here: https://gov.gg/article/121078/Cyber-Security