In response to the launch of the UK Cyber Information Sharing Partnership (CISP), David Garfield, Managing Director of Cyber Security at BAE Systems Detica made the following comments, highlighting the significance of the launch in recognising threat intelligence as a critical component of countering cyber attacks and acknowledging it as an important step forward in the battle to balance the threat between cyber attacker and victim.
“The launch of the CISP is a significant move catalysed by government in its bid to ask companies to share intelligence about what cyber threats they are seeing against them. When we look back in a few years’ time, this launch will represent a step change in the approach to threat intelligence sharing, especially between organisations that are typically competitors.”
“It remains to be seen how successful the project will be in the short term – one of the learnings from the pilot is that it takes time to build trust between companies and to create an awareness that sharing is for the common good. As more companies become involved, they will all be on the same learning curve and hence this enlarged community will need time to settle before really effective levels of sharing can be achieved.
“The CISP is certainly a good thing for the UK; it is one of the largest initiatives of this nature that we have seen and it is cross sector. In addition, organisations are signing up for their own benefit, without a stick to persuade them. In other countries there tend to be initiatives in place where there is some government leverage around participation - for example if a company is a major government supplier.
“In the end, it is imperative that this type of cyber initiative is successful if we are to redress the balance between attacker and victim and to understand all the different types of attack vector experienced by companies. Ultimately, it has the potential to become a valuable component in the nation’s cyber defences.”