Installers who saw an article in The Times last week may be concerned that they will be forced to undertake training in cyber security.
With the headline ‘Plumbers recruited to fight cybercrime’, the newspaper claimed: ‘Gas engineers and plumbers could have to undergo mandatory cybersecurity training to prevent smart devices from being exploited by criminals or state-sponsored attackers’. The news item covered the Government’s report on the Internet of Things (IoT) which suggests ways of protecting connected devices, such as smart thermostats, in homes.
The Department for Digital, Culture, Media and Sport’s (DCMS) report, Secure by Design, aims for Government to work with industry to develop a new Code Of Practice to improve the cyber security of consumer internet-connected devices and associated services.
The Times interpreted this statement as a mission to ’embed IoT training as standard’ for engineers who work with connected devices, and quoted Emma Green from the DCMS saying:
“As home and industrial heating systems become increasingly connected it is vital that engineers have the skills to deal with security breaches. Cybersecurity is as important as gas safety.”
A call to the Department for Digital, Culture, Media and Sport reveals that the article is misleading, with a spokesperson saying “plumbers will not have to become the cyber police”. While the department recognises the importance of heating engineers being aware of security issues, there are no plans to require training for them.
The official press release for Secure by Design says Government will expect manufacturers of smart devices to incorporate tough new security measures to keep households safe from the threat of cyber crime. The aim is for makers of connected products to embed security in the design process rather than bolt them on as an afterthought.
To read The Times article, click here.
