UK Plc and Supply Chain Cyber Security: Where in the World is my Data?

As hardware and software supply chains and their mapping become ever more complex, and digital technology procurement becomes an ever more pressing foreign policy issue, BFPG’s latest paper explores the role of the UK government and businesses alike in supply chain cybersecurity.

Exploring the actions of the UK and its allies in this field, it concludes that given that the UK is outside the leading international cybersecurity regulatory and strategic initiatives, there is an urgent need for Britain to assure other jurisdictions of its continued strategic relevance, operational dependability and practical equivalence. With cyber insecurity consistently identified in its top ten global risks, the World Economic Forum is one setting in which cybersecurity vendors and British businesses can make their voices heard. The Government, meanwhile, must now renew and accelerate efforts towards mutual recognition of national standards, active alignment with international certification and assurance mechanisms including the Software Bill of Materials and the US-EU Trade and Technology Council, and promotion of UK interests and expertise through existing alliances. Tackling supply chain cyber security is a shared task for Government and business.




Victoria Baines

Victoria Baines is a BFPG Senior Research Fellow