United Kingdom

The United Kingdom of Great Britain and Northern Ireland (UK) is one of the world’s leading economies and has been able to marshal substantial national resources to address a range of cybersecurity issues. This chapter outlines the UK's cybersecurity strategy and its planning assumptions; sets out the main institutions and stakeholders; describes pertinent UK legislation; and discusses relevant aspects of UK foreign policy. It also looks ahead briefly to some of the societal implications of UK cybersecurity and concludes that while there are some strategic challenges to UK cybersecurity in the form of Brexit and Russian subversion, the UK is relatively well prepared to address the broad landscape of cybersecurity challenges. The UK’s first national cybersecurity strategy (NCSS) was published in 2009, with subsequent iterations in 2011 and 2016. The NCSS views the private sector as a key partner in achieving the stated ambitions of the NCSP, including the development of a robust cybersecurity export market.