Recommendation 16

HM Government Rejected

We do not accept this recommendation. The UK National Cyber Strategy 2022 sets out a whole-of-government approach, recognising that all ministers must play a role in ensuring that the UK achieves its cyber ambitions. Ministers with leading roles have specific sets of responsibilities; for example the Connected tech: smart or sinister?: Government and Information Commissioner’s Office Response 13 Secretary of State for the Home Department on response to cyber incidents, the Secretary of State for Foreign, Commonwealth and Development Affairs on work to advance UK global leadership, and the Secretary of State for Science, Innovation and Technology for the ecosystem and technology pillars of the National Cyber Strategy, as well as the cyber security of organisations in the wider economy. Furthermore, it is not possible to separate national security measures from broader cyber policy. This is because the UK’s national security is directly impacted by, and dependent upon, wider levels of cyber resilience and security across the economy and society. For example, without the right cyber skills and industrial base, good cyber resilience practices among businesses and organisations, and the embedding of security within critical and emerging technology, we will be unable to manage risks to UK national security. Notwithstanding this whole-of-government approach, the Government recognises the need to ensure comprehensive and effective coordination and join-up, which is provided by the Chancellor of the Duchy of Lancaster (CDL), supported by the Paymaster General, via the Cabinet Office. This includes overall responsibility for the development and implementation of the National Cyber Strategy, the supporting programme of investment, and coordination of the government’s efforts on cyber resilience. CDL also has overall cross-sector policy and coordination responsibility for the cyber security and resilience of the UK’s critical national infrastructure.