Budget 2016: What about cybersecurity spending?

published 16 March 2016

Anyone hopeful that IT would get more than a passing nod in today's Budget 2016 speech will be hugely disappointed.

While we at IT Pro had hedged our bets on Chancellor of the Exchequer, George Osborne, expanding on his cybersecurity spending spree speech from the end of last year, the only mentions of "delivering security" and "a cocktail of risk" referred to economic stability.

This stands in stark contrast to November last year, when he uttered the word 'cyber' a staggering 134 times in a 45-minute speech - there wasn't even a solitary mention in the 2016 budget delivery.

Having sat through the entire hour and a boring bit of it, we were convinced that IT security would surely feature at some point. But no, nothing; a whole lot of nothing.

Given that Osborne plans, or at least we assume he still plans, to double cybersecurity spending to 1.9 billion over the next five years, this lack of any further detail was quite incredible. When will we find out exactly where the money will go? When will we discover if it is money wisely spent? This silence does not bode well.

Considering Osborne's own admission that the cyber workforce gap could hit 1.5 million by 2020, to not address this is surprising. If his plans to boost cybersecurity are to bear any fruit, this must be at the very core (pardon the pun) of his strategy.

With the Investigatory Powers Bill remaining at the centre of a wider debate about privacy, and the IT security industry's contention this week that it's not fit for purpose, you might expect a mention on cybersecurity today. You'd be forgiven for thinking the budget might have provided a decent opportunity to forward the notion of this government as defenders of our corporate data, rather than snoopers of our secrets.

But no, nada, niet, nowt.

Arguing that the budget is about making new announcements rather than repeating old ones does not wash with us. After all, most of the announcements made had already been leaked to the media or were, indeed, older commitments repeated once again.

The government must start taking the concerns around the Snooper's Charter and its strategic cybersecurity planning seriously by addressing these directly and in detail. It needs to define where the money will be spent, again in detail rather than in media-friendly soundbites.

We need to see that this government understands the need for a secure-by-default approach to data, to infrastructure and process.

Davey is a three-decade veteran technology journalist specialising in cybersecurity and privacy matters and has been a Contributing Editor at PC Pro magazine since the first issue was published in 1994. He's also a Senior Contributor at Forbes, and co-founder of the Forbes Straight Talking Cyber video project that won the ‘Most Educational Content’ category at the 2021 European Cybersecurity Blogger Awards.

Davey has also picked up many other awards over the years, including the Security Serious ‘Cyber Writer of the Year’ title in 2020. As well as being the only three-time winner of the BT Security Journalist of the Year award (2006, 2008, 2010) Davey was also named BT Technology Journalist of the Year in 1996 for a forward-looking feature in PC Pro Magazine called ‘Threats to the Internet.’ In 2011 he was honoured with the Enigma Award for a lifetime contribution to IT security journalism which, thankfully, didn’t end his ongoing contributions - or his life for that matter.

You can follow Davey on Twitter @happygeek, or email him at davey@happygeek.com.