on this page

John Connolly, AtkinsRéalis Technical Director for Cyber Resilience, UK and Europe introduces the 2023 Secure by Design magazine

In this year’s Secure by Design magazine we aim to highlight a variety of cyber resilience issues, with a sharp focus on the implementation of secure by design.

Secure by design, as a concept, is not new. It has been used in the security sector for some years, both physical and cyber, and it means different things to different people. For designers, it’s about baking-in security-enforcing functions to the design, avoiding practices that introduce vulnerabilities, and testing that these controls work.

For those managing risk, it’s about ensuring risks are identified as soon as possible in the lifecycle and reviewed throughout a system’s life. And, for information asset owners and decision-makers, it’s about being confident that systems are safeguarding information appropriately and they’re functioning as designed.

In truth it’s all the above: organisations need to ensure their cyber risk considerations and risk awareness ‘shift left’ in the development lifecycle, while addressing risk throughout the life of an asset.

We see cyber attacks becoming an everyday threat to business and society, and there are no signs of this levelling off or receding. Adversaries are exploiting vulnerabilities in our digital infrastructure, the systems that provide critical services to society such as power generation, water treatment, gas pipelines. This means organisations are turning to their Chief Information Security Officers (CISOs) and IT teams for answers to what, in some businesses, is an existential threat: a top three board risk. In this issue, Senior Cyber Security Consultant David Greeney’s article proposes that what’s needed is a collaborative approach between the technical and business space.

With this increase in threat and more severe impact as we move to digitise our processes comes the need to grow the skills to adequately address them. Both Senior OT Cyber Security Consultant, Della-Maria Marinova, and Cyber Security Consultant Kate Blackie’s articles discuss the opportunities and challenges in closing the ‘cyber skills gap’.

Cyber resilience can’t sit in isolation though, and its mitigations have real-world consequences to our planet. Not only in terms of protecting the environment from harmful incidents, but also in ensuring that we design solutions with a low carbon footprint. Senior Cyber Security Consultant, Natalie Forrestill, and Cyber Security Consultant Jonathan Bewley’s article on embodied carbon highlights some of the thinking designers need to do when developing systems.

I hope you enjoy reading the magazine. If you would like to talk about any of the subjects raised or our work in cyber resilience, please do reach out to me. At the back of the magazine there are also regional points of contact who will be more than happy to help.

Read the 2023 edition of Secure by Design magazine.

DISCLAIMER

Please note that you are now leaving the AtkinsRéalis website (legal name: AtkinsRéalis Group inc.) and entering a website maintained by a third party (the "External Website") and that you do so at your own risk.

AtkinsRéalis has no control over the External Website, any data or other content contained therein or any additional linked websites. The link to the External Website is provided for convenience purposes only. By clicking "Accept" you acknowledge and agree that AtkinsRéalis is not responsible, and does not accept or assume any responsibility or liability whatsoever for the data protection policy, the content, the data or the technical operation of the External Website and/or any linked websites and that AtkinsRéalis is not liable for the terms and conditions (or terms of use) of the External Website. Further, you acknowledge and agree that you assume all risks resulting from entering and/or using the External Website and/or any linked websites.

BY ENTERING THE EXTERNAL WEBSITE, YOU ALSO ACKNOWLEDGE AND AGREE THAT YOU COMPLETELY AND IRREVOCABLY WAIVE ANY AND ALL RIGHTS AND CLAIMS AGAINST ATKINSRÉALIS, AND RELEASE, DISCHARGE, INDEMNIFY AND HOLD HARMLESS ATKINSRÉALIS, ITS OFFICERS, EMPLOYEES, DIRECTORS AND AGENTS FROM ANY AND ALL LIABILITY INCLUDING BUT NOT LIMITED TO LIABILITY FOR LOSS, DAMAGES, EXPENSES AND COSTS ARISING OUT OF OR IN CONNECTION WITH ENTERING AND/OR USING THE EXTERNAL WEBSITE AND/OR ANY LINKED WEBSITES AND ANY DATA AND/OR CONTENT CONTAINED THEREIN.

Such waiver and release specifically includes, without limitation, any and all rights and claims pertaining to reliance on the data or content of the External Website, or claims pertaining to the processing of personal data, including but not limited to any rights under any applicable data protection statute. You also recognize by clicking “Accept” that the terms of this disclaimer are reasonable.

The information provided by Virtua Research cited herein is provided “as is” and “as available” without warranty of any kind. Use of any Virtua Research data is at a user’s own risk and Virtua Research disclaims any liability for use of the Virtua Research data. Although the information is obtained or compiled from reliable sources Virtua Research neither can nor does guarantee or make any representation or warranty, either express or implied, as to the accuracy, validity, sequence, timeliness, completeness or continued availability of any information or data, including third-party content, made available herein. In no event shall Virtua Research be liable for any decision made or action or inaction taken in reliance on any information or data, including third-party content. Virtua Research further explicitly disclaims, to the fullest extent permitted by applicable law, any warranty of any kind, whether express or implied, including warranties of merchantability, fitness for a particular purpose and non-infringement.

The consensus estimate provided by Virtua Research is based on estimates, forecasts and predictions made by third party financial analysts, as described above. It is not prepared based on information provided by AtkinsRéalis and can only be seen as a consensus view on AtkinsRéalis' possible future results from an outside perspective. AtkinsRéalis has not provided input on these forecasts, except by referring to past publicly disclosed information. AtkinsRéalis does not accept any responsibility for the quality or accuracy of any individual or average of forecasts or estimates. This web page contains forward-looking statements based on current assumptions and forecasts made by third parties. Various known and unknown risks, uncertainties and other factors could lead to material differences between AtkinsRéalis' actual future results, financial situation, development or performance, and the estimates given here.



Downloads

Trade releases