National Cyber Security Centre (United Kingdom)

Last updated

National Cyber Security Centre (NCSC)
NCSC (UK) logo.png
Agency overview
Headquarters Victoria, London, England, United Kingdom
Agency executives
  • Ciaran Martin, CEO
  • Dr Ian Levy, Technical Director
Parent agency Government Communications Headquarters

The National Cyber Security Centre (NCSC) is an organisation of the United Kingdom Government that provides advice and support for the public and private sector in how to avoid computer security threats. Based in London, it became operational in October 2016, and its parent organisation is GCHQ. [1]



The NCSC absorbed and replaced CESG (the information security arm of GCHQ), the Centre for Cyber Assessment (CCA), Computer Emergency Response Team UK (CERT UK) and the cyber-related responsibilities of the Centre for the Protection of National Infrastructure (CPNI). [2] It built on earlier efforts of these organisations and the Cabinet Office to provide guidance on Information Assurance to the UK's wider private sector, such as the "10 Steps" guidance released in January 2015. In pre-launch announcements, the UK government stated that the NCSC would first work with the Bank of England to advise financial institutions on how to bolster online defences. [3]

The centre was first announced in November 2015 by the Chancellor of the Exchequer, George Osborne. The existing Director General Cyber of GCHQ, Ciaran Martin, leads the new centre, and GCHQ's current Technical Director of Cyber Security, Dr Ian Levy, assumed the same role at the NCSC. [4] A detailed paper on the creation of the NCSC, including a description of its structure and future challenges, written by the then Director of GCHQ, Robert Hannigan, who is widely credited with establishing the centre, was published by the Royal United Services Institute in February 2019 [5] .

The centre was dedicated by the Queen on 14 February 2017. [6] [7] [8] Philip Hammond, the Chancellor of the Exchequer, announced an investment of £1.9 billion and an initiative to embed 100 people from industry into the NCSC on secondment. [9] [10]

In April 2016, the Ministry of Defence announced that a Cyber Security Operations Centre (CSOC) will contribute to this initiative. The likely location for the CSOC will be MoD Corsham. [11]

See also

Related Research Articles

GCHQ British intelligence agency

Government Communications Headquarters, commonly known as GCHQ, is an intelligence and security organisation responsible for providing signals intelligence (SIGINT) and information assurance to the government and armed forces of the United Kingdom. Based in "The Doughnut" in the suburbs of Cheltenham, GCHQ is the responsibility of the country's Secretary of State for Foreign and Commonwealth Affairs, but it is not a part of the Foreign Office and its director ranks as a Permanent Secretary.

Australian Signals Directorate Australian signals intelligence agency

Australian Signals Directorate is the Australian government agency responsible for foreign signals intelligence, support to military operations, cyber warfare, and information security. ASD is part of the Australian Intelligence Community. ASD's role within UKUSA Agreement is to monitor SIGINT in South and East Asia. The ASD also houses the Australian Cyber Security Centre.

HM Revenue and Customs United Kingdom government non-ministerial department

Her Majesty's Revenue and Customs is a non-ministerial department of the UK Government responsible for the collection of taxes, the payment of some forms of state support and the administration of other regulatory regimes including the national minimum wage.

National Cyber Security Division

The National Cyber Security Division (NCSD) is a division of the Office of Cyber Security & Communications, within the United States Department of Homeland Security's Cybersecurity and Infrastructure Security Agency. Formed from the Critical Infrastructure Assurance Office, the National Infrastructure Protection Center, the Federal Computer Incident Response Center, and the National Communications System, NCSD opened on June 6, 2003. The NCSD mission is to collaborate with the private sector, government, military, and intelligence stakeholders to conduct risk assessments and mitigate vulnerabilities and threats to information technology assets and activities affecting the operation of the civilian government and private sector critical cyber infrastructures. NCSD also provides cyber threat and vulnerability analysis, early warning, and incident response assistance for public and private sector constituents. NCSD carries out the majority of DHS’ responsibilities under the Comprehensive National Cybersecurity Initiative. The FY 2011 budget request for NCSD is $378.744 million and includes 342 federal positions. The current director of the NCSD is John Streufert, former chief information security officer (CISO) for the United States Department of State, who assumed the position in January 2012.

The Australian Intelligence Community (AIC) and the National Intelligence Community (NIC) or National Security Community of the Australian Government are the collectives of statutory intelligence agencies, policy departments, and other government agencies concerned with protecting and advancing the national security and national interests of the Commonwealth of Australia. The intelligence and security agencies of the Australian Government have evolved since the Second World War and the Cold War and saw transformation and expansion during the Global War on Terrorism with military deployments in Afghanistan, Iraq and against ISIS in Syria. Key international and national security issues for the Australian Intelligence Community include terrorism and violent extremism, cybersecurity, transnational crime, the rise of China, and Pacific regional security.

Centre for the Protection of National Infrastructure (CPNI) is the United Kingdom government authority which provides protective security advice to businesses and organisations across the national infrastructure.

Information Security Group

Founded in 1990, the Information Security Group (ISG) at Royal Holloway, University of London is an academic security group with 18 established academic posts, 10 visiting Professors/Fellows and over 90 research students. The Founder Director of the ISG was Professor Fred Piper, and the current Director is Professor Keith Mayes.

Robert Hannigan British civil servant, Director of GCHQ

Robert Peter Hannigan CMG is a cybersecurity specialist who currently serves as a senior executive of BlueVoyant, a US-based cyber security services company, and as an adviser to a number of international companies. He was a senior British civil servant who previously served as the Director of the signals intelligence and cryptography agency the Government Communications Headquarters (GCHQ). He announced his resignation as Director on 23 January 2017 and stepped down at the end of April 2017 to pursue a career in private sector cyber security and academia.

The Institute of Information Security Professionals (IISP) is an independent, non-profit body governed by its members, with the principal objective of advancing the professionalism of information security practitioners and thereby the professionalism of the industry as a whole.


IASME Governance is an Information Assurance standard that is designed to be simple and affordable to help improve the cyber security of Small and medium-sized enterprises (SMEs).

The cyber security community in the United Kingdom is diverse, with many stakeholders groups contributing to support the UK Cyber Security Strategy. The following is a list of some of these stakeholders.

MoD Corsham

MoD Corsham is a Ministry of Defence establishment located between the towns of Corsham and Box in Wiltshire, England.

The Government of the United Kingdom maintains intelligence agencies within several different government departments. The agencies are responsible for collecting and producing foreign and domestic intelligence, providing military intelligence, performing espionage and counter-espionage. Their intelligence assessments contribute to the conduct of the foreign relations of the United Kingdom, maintaining the national security of the United Kingdom, military planning and law enforcement in the United Kingdom. The main organisations are the Secret Intelligence Service, the Security Service (MI5), the Government Communications Headquarters (GCHQ) and Defence Intelligence (DI).

Cyber Essentials is a UK government information assurance scheme operated by the National Cyber Security Centre (NCSC) that encourages organisations to adopt good practice in information security. It includes an assurance framework and a simple set of security controls to protect information from threats coming from the internet.

National Cyber Security Centre (Ireland)

The National Cyber Security Centre (NCSC) is a government computer security organisation in Ireland, an operational arm of the Department of Communications, Climate Action and Environment. The NCSC was developed in 2013 and formally established by the Irish government in July 2015. It is responsible for Ireland's cyber security, with primary focus on securing government networks, protecting critical national infrastructure, and assisting businesses and citizens in protecting their own systems. The NCSC incorporates the Computer Security Incident Response Team (CSIRT-IE).

The University College Dublin Centre for Cybersecurity & Cybercrime Investigation is a centre for research and education in cybersecurity, cybercrime and digital forensic science in Dublin, Ireland.

The Department of Home Affairs is the Australian Government interior ministry with responsibilities for national security, law enforcement, emergency management, border control, immigration, refugees, citizenship, and multicultural affairs. The portfolio also includes federal agencies such as the Australian Federal Police, Australian Border Force and the Australian Security Intelligence Organisation. The Home Affairs portfolio reports to the Minister for Home Affairs The Hon. Peter Dutton MP and is led by Secretary of the Department of Home Affairs Mike Pezzullo.

The Australian Cyber Security Centre (ACSC) is the Australian Government lead agency for cybersecurity. The ACSC is part of the Australian Signals Directorate and based at the Australian Security Intelligence Organisation headquarters in the Ben Chifley Building. The Centre is overseen by the Cyber Security Operations Board, and is the joint responsibility of the Minister for Defence.

Ciaran Liam Martin is the first CEO of the National Cyber Security Centre. Having been appointed as head of cyber security at GCHQ in December 2013, he recommended the establishment of a National Cyber Security Centre within the intelligence and security agency. This was agreed by the Government and announced by then Chancellor George Osborne in November 2015. Martin was announced as the first Chief Executive in February 2016, and it became operational in October of that year. On 14 February 2017, the NCSC's new headquarters in Victoria, London, were opened by Her Majesty The Queen.

TechVets is a UK not-for-profit company which supports military veterans and service leavers into careers in information security.


  1. HM Government (1 November 2016). "National Cyber Security Strategy 2016-2021" (PDF). Retrieved 2 November 2016.
  2. "About us". National Cyber Security Centre. Retrieved 9 March 2017.
  3. Corera, Gordon (18 March 2016). "Bank of England to work with new cybersecurity body". BBC News. Retrieved 19 March 2016.
  4. Jones, Sam (18 March 2016). "UK launches National Cyber Security Centre". Financial Times. Retrieved 19 March 2016.
  5. "Organising a Government for Cyber: The Creation of the UK's National Cyber Security Centre". RUSI. 27 February 2019. Retrieved 17 March 2019.
  6. "National Cyber Security Centre: Queen opens new HQ as business warned it is unprepared for attacks". ITV News. 14 February 2017. Retrieved 14 February 2017.
  7. "Cybersecurity: Queen opens centre to protect against attacks". BBC. 14 February 2017. Retrieved 15 February 2017.
  8. "Director GCHQ speaks at the official opening of the National Cyber Security Centre | GCHQ Site". Retrieved 17 March 2019.
  9. "Chancellor's speech at the National Cyber Security Centre opening". HM Treasury. 14 February 2017. Retrieved 15 February 2017.
  10. "Britain to enter 'new era of online opportunity'". NCSC. 13 February 2017. Retrieved 15 February 2017.
  11. Ministry of Defence (1 April 2016). "Defence Secretary announces £40m Cyber Security Operations Centre". Retrieved 2 April 2016.