There are a number of National Cyber Security Centres (or Centers) across the world.

The United Kingdom (UK) has a National Cyber Security Centre (NCSC) which is part of GCHQ.

Websites:

• NCSC: https://www.ncsc.gov.uk/

• GCHQ: https://www.gchq.gov.uk/

A Network Operations Centre (NOC) is a location or team which is for the monitoring, control and general management of a network. They are typically established to ensure high reliability and high availability.

The NIS Directive, or Network and Information Systems Directive on Security, is a European Union wide directive which specifies that Critical National Infrastructures (CNI) and Digital Marketplaces should be at a good level of cyber security in terms of policy and procedure. This is because the European Union recognises that the organisations which run these infrastructures are becoming increasingly more digital and increasingly more internet connected, which exposes more vulnerabilities than society has ever seen before.

Profile by Awen helps Critical National Infrastructures, and their suppliers, to reach the best level of cyber security policies & procedures possible.

Dot by Awen helps industrial organisations, including Critical National Infrastructures to understand their Operational Technologies to the highest level possible, and to make steps towards reducing cyber vulnerabilities of those systems.

The International Organization for Standardization or ISO does exactly what it says in the title - it is a worldwide organisation, which sets standards for a wide variety of disciplines.

Some of the standards relevant to our particular industry include:

• ISO 27001 - which is about general information security management, and was published jointly with the IEC.

• ISO 15408 - which is also commonly referred to as Common Criteria, or and is about the security evaluation of IT systems.

• ISO 21434 - which is about the cyber security of road vehicles, and was published jointly with SAE International (a professional association of automotive and aerospace engineers).

• ISO 44001 - which is about collaborative business relationship management.

The IEEE, or the Institute of Electrical and Electronics Engineers, is an international society for those involved in electronic and electrical engineering. They have chapters around the world as well as special interest groups focused on particular subjects.

IEC stands for the International Electrotechnical Commission, and is the creator of several standards for industrial sectors.

Information Commissioner’s Office is abbreviated to ICO, and is a UK Regulator.

The ICO is involved in the regulation of GDPR in the United Kingdom.

An insider threat is a person in an organisation which knowingly or unknowingly presents a cyber threat.