DCMS’ approach to software security and resilience policySecurity
Tuesday, February 7 • 1:45pm – 2:25pm
Churchill, Ground Floor
DCMS’ Cyber Resilience Team is publishing a call for views on enterprise software resilience and security in early 2023. This marks a major milestone in our work to better understand the security risks related to the development, distribution and use of software. In this panel, we aim to share our approach to software resilience policy, including how we view risks related to open source software. This will include our framework outlining the key risks throughout the software lifecycle, from development through to end use and everything in between. We also aim to elaborate on issues relating to open source software, including resourcing constraints in the open source community, and the need for more secure integration of third-party code by proprietary developers and vendors.
Policy analyst professional with 10 years experience driving strategic policy advice to senior internal and external stakeholders to deliver results and effect change. I currently head the DCMS Cyber Resilience Policy team, ensuring all organisations across UK plc are effectively managing their cyber risk.
I have worked across central and line government agencies and not-for-profits, both in the UK and Australia. My experience has covered a range of policy development areas, including cyber security, data and digital policy, strategic population planning, housing and infrastructure, welfare and child support. I am skilled in driving and supporting a range of government policy reform and development processes, advocacy, strategic planning, public affairs and communications projects.