Nowhere is the interconnected relationship between technology and the home more evident than the rapidly growing world of IoT.
What we see time and time again is that consumers care about security within their products, but most assume that a product is safe simply because it is for sale. We recognise it is not reasonable to expect everyone to become a cyber security expert, so we need to shift the burden off end users, support manufacturers of all sizes to embed strong cyber security principles, champion those that already do, and regulate to protect citizens from manufacturers that don’t take security seriously.
The talk will outline the work we have done to date and our approach to protecting consumers. In the past twelve months, we have published the Code of Practice for Consumer IoT Security, have worked to develop the first globally applicable standard for consumer IoT- ETSI 103 645 and have been supporting organisations at all scales to implement these standards as a manufacturer and buyer of IoT. It is clear that action is needed, and we published our ambition to regulate in May 2019, outlining possible options for consultation, as well as a proposed labelling option.
With over 20 years in IT security and associated subjects, Richard has held both offensive and defensive roles encompassing operational, research and strategic tasks. Richard has worked for a range of government and industry organizations in highly trusted positions and currently holds a senior technical role in the UK’s National Cyber Security Centre, supporting the UK economy and its citizens.