Lord Haskel
Main Page: Lord Haskel (Labour - Life peer)Department Debates - View all Lord Haskel's debates with the Cabinet Office
(6 years, 1 month ago)
Lords ChamberTo ask Her Majesty’s Government what steps they are taking to protect the United Kingdom’s critical infrastructure from cyberattacks.
My Lords, ensuring that our critical national infrastructure—CNI—is secure and resilient against cyberattack is at the heart of our 2016 national cybersecurity strategy. The National Cyber Security Centre we established has improved our understanding of the threat and provided a unified source of advice and support. We have also strengthened regulatory frameworks across much of the CNI to ensure that cyber risk is managed in the national interest.
I hear what the Minister says, but I do not think he will satisfy the committee. It defined the Government’s current position as,
“long on aspiration and short on delivery”.
It says that the Government have failed to match the increasing threat with improved cyber resilience in both the public and private sectors and that it finds a lack of expertise to provide credible insurance. It would like to see a Minister appointed to ensure that there is capacity. Putting this right will require a lot more than money and good intentions. Will the Government take steps to carry out the report’s proposals?
The noble Lord will be aware that this is a substantial report published two days ago by the Joint Committee on the National Security Strategy, with 22 senior Members of both Houses. It has 10 major recommendations and the Government will want to respond to those in due course. The noble Lord quoted a little from the report and, just to add some balance, may I also quote from it? It said:
“Many of those who submitted written evidence … welcomed the step change in Government approach in the 2016 NCSS, with some describing the strategy—and the activity it underpins—as world-leading. This appears to be borne out by the notable level of international interest in the UK’s approach to cyber security”.
That gives a somewhat more balanced response than what the noble Lord quoted. There are many recommendations. One is that there should be one Minister; the committee wants what it calls a collective mind—a somewhat Orwellian concept. If we look at the building blocks of national security, we have GCHQ, which is under the Foreign Office; the Home Office, with overall responsibility for protecting the citizen if there is a cyberattack; the Ministry of Defence, which is in charge of offensive cybersecurity; and the Cabinet Office, which is in charge of CNI. It is very difficult to have a collective mind. What is important is having a collective strategy that all the Government agree to, underpinned by substantial resources and supervised by the National Security Council, chaired by the Prime Minister. That is more important than having what the committee calls a collective mind.