Element Materials Technology - Experts & Thought Leaders

With cybercrime rising and new cybersecurity legislation tabled by the UK government, BM TRADA is encouraging businesses to achieve ISO 27001 certification sooner rather than later to safeguard information security and avoid non-compliance. Cybercrime has risen significantly in recent years, with 32% of businesses in the UK now attacked at least once a week, according to statistics gathered by The Independent. Phishing and ransomware attacks have had a particularly disruptive impact, with 61% of businesses in the UK reporting staff having received fraudulent emails or accessed fraudulent websites. Effects of a cyber breach  The long-term effects of a cyber breach on businesses and the economy have led to the UK Government to recently announce the Cyber Security and Resilience Bill, aimed to strengthen the UK’s cyber defences. Amongst other intentions, the Bill is set to expand the remit of the existing regulation, put regulators on a stronger footing, and increase reporting requirements to build a better picture of cyber threats in government. BM TRADA launched a white paper on ISO 27001 Information Security Management Systems certification Following the announcements, BM TRADA, part of the Element Materials Technology group, has launched a white paper on ISO 27001 Information Security Management Systems certification. The paper from the pioneering management systems certification provider introduces the internationally recognised ISO 27001 standard, what the certification process entails, and the benefits of achieving the certification. Information security  Lee Horlock, Head of Technical & Approvals – Management Systems at BM TRADA, said: “In today’s technologically evolving world, information is now one of the most valuable assets for any organisation. Protecting this information is critical, not just from an ethical point of view but also to comply with regulations such as GDPR and the UK Data Protection Act 2018." “We urge all businesses and those in control of information security to become ISO 27001 certified, if they are not already. Doing so offers a number of benefits, from being able to outwardly project trust and confidence in your information security, reducing the risk of financial and reputational loss, to being able to demonstrate compliance, which is now often also needed for business tenders.” BM TRADA’s white paper Within BM TRADA’s white paper, readers will find a case study on how the certification provider helped NHS Greater Manchester Integrated Care achieve ISO 27001 standard, not long prior to the outbreak of the COVID-19 pandemic. Pioneering the project was Phil Scott, IT Security Manager for NHS Greater Manchester Shared Services, who had the following to say: “We knew ISO 27001 certification would make us pioneers in our field, but we didn’t realise what a difference it would make as we faced a global pandemic. Our staff and customers could work from home quickly and easily, while other parts of the healthcare system were struggling months later. Feedback from customers was overwhelmingly positive, boosting team morale at an incredibly difficult time.”

Infosecurity Europe, the most influential information security event running at ExCeL London from 4-6 June 2024 announced further findings from its 2024 Cybersecurity Trends, Obstacles, and Opportunities report highlighting that ransomware and AI-generated attacks are weighing heavily on cybersecurity pioneers’ minds, with almost 40% of those surveyed stating these issues were accelerating investment into cyber defences.  This emphasises the urgency for organisations to stay ahead of evolving threats and allocate greater resources to bolster their defences. Role of cybersecurity With attacks becoming more frequent, complex, and damaging, businesses are allocating greater resources to bolster their defences and enhance their resilience against evolving threats. This heightened investment reflects a growing recognition of the critical role that cybersecurity plays in protecting sensitive data, preserving customer trust, and safeguarding business continuity. Addressing the threat landscape The threat of ransomware persists and 2024 Infosecurity Europe event is set to address the issue in greater depth The threat of ransomware persists and the 2024 Infosecurity Europe event is set to address the issue in greater depth. As malicious actors continue to exploit vulnerabilities in software, hardware, and human behaviour, it’s critical to drive awareness around the significant risks posed to organisations' security and stability.  From ransomware attacks targeting critical infrastructure to sophisticated phishing campaigns aimed at stealing sensitive data, the threat landscape is more diverse and dynamic than ever.  Ransomware payment These topics will be further explored in some of the keynote sessions across the 3-day event. In a panel discussion titled ‘Ransomware - Time to Decide - Will You or Won't You Pay?’  on Thursday 6 June from10:55 - 11:25, Jon Davies, Senior Director - Cyber Defense, News Corp, will be joined by Paul Peters, Detective Superintendent / Managing Director, The Cyber Resilience Centre for Wales and Gareth Bateman, UK Cyber Growth pioneer, Marsh.  The trio will take to the stage, alongside moderator James Coker, Deputy Editor, Infosecurity Magazine, to discuss ransomware payment, a debate that has raged on for some time.   Effective response & recovery strategies "Ransomware attacks have become increasingly prevalent and continue to pose a significant threat to organisations. As cybercriminals continue to evolve their tactics, organisations must be prepared and equipped with effective response & recovery strategies. We will share real-world experiences and advice on how to respond to a ransomware attack, weighing the potential risks and consequences associated with paying the ransom," said Jon Davies, Director of Cyber Defence at News Corp. "This session aims to provide attendees with the knowledge and reference needed to make informed decisions and mitigate the impact of ransomware incidents." Response and recovery actions The panel will discuss the internal procedures following an attack, examine the methods and vulnerabilities Jennifer McGhee, CISO of Element Materials Technology, will further examine the immediate response in the wake of an attack in her keynote ‘Crisis Management – Responding to the Unimaginable’ at 14:05 - 14:45 on Thursday 6 June. Moderated by Paul Watts, Distinguished Analyst/vCISO, Information Security Forum, Jennifer will join a panel with Paul Mackie, CISO, Fern Trading, Stuart Seymour, Group CISO and CSO, Virgin Media O2, and Tomàs Roy, Director of the Cybersecurity Agency of Catalonia. The panel will discuss the internal procedures following an attack, examine the methods and vulnerabilities exploited, and assess the effectiveness of the response and recovery actions to refine security strategies. Importance of crisis management "As a CISO, with first-hand experience of facing a cyber attack, I understand the critical importance of crisis management," said Jennifer McGhee, CISO of Element Materials Technology. "Cybersecurity incidents can have far-reaching consequences, impacting not only an organisation's operations but also its reputation and customer trust. Businesses need to be prepared with a robust incident response plan, detection, containment, and recovery." Communication, collaboration, and coordination “This should be coupled with clear communication, collaboration, and coordination among stakeholders during a crisis." "I will draw on my expertise in crisis management, along with other cybersecurity experts, to provide actionable guidance on how to strengthen overall cybersecurity posture and ensure resilience when responding to an attack." Infosecurity Europe Attendees will gain valuable knowledge on decision-making in ransomware situations Infosecurity Europe will feature several other sessions that explore the topic of ransomware and provide attendees with valuable insights and updates. These sessions will bring together industry experts, thought pioneers, and cybersecurity professionals to discuss the latest trends, strategies, and best practices in combating ransomware attacks. Attendees will gain valuable knowledge on decision-making in ransomware situations, and the essential updates needed to stay ahead of this evolving threat. Survey methodology The research was conducted by Censuswide, among a sample of 200 IT security decision-makers (18+). The data was collected between 18.01.24 - 23.01.24.  Censuswide abides by and employs members of the Market Research Society and follows the MRS code of conduct and ESOMAR principles. Censuswide is also a member of the British Polling Council.

Security test standards for mechanical immobilisers for motor vehicles and plant as well as security systems for bicycles and ground anchors, have been launched by Element Materials Technology, a provider of testing, inspection and certification services. The new automotive standards give manufacturers a route to meet the requirements set by Secured by Design (SBD), the national police crime prevention initiative. After-market vehicle products The three vehicle security standards are based on the principles of Element’s test standard STS 202, which was established ten years ago to provide an alternative way to achieve SBD compliance on security-related construction products, such as doors, windows, garage doors, shutters and grilles. This standard has been embraced by the industry and is referenced in Part Q of the Building Regulations in England The tests for STS 202 involve attacking products to test their physical resistance to casual or opportunistic burglars using a range of tools based on a burglary rating between 1-6 with six being the highest. This standard has been embraced by the industry and is referenced in Part Q of the Building Regulations in England. Element’s decision to create a set of vehicle standards follows Thatcham’s decision to withdraw their physical test offering on after-market vehicle products. Mechanical immobilisers In addition, changing market conditions include the potential increase in plant theft with major construction projects, increasing reliance on mechanical immobilisers with ‘keyless’ cars, and that STS standards are more flexible than EN European equivalents and can adapt quickly to changing patterns of criminal behaviour. So Element has applied the STS 202 tests and adapted them for the new standards, which are: STS 501 mechanical immobilisers including steering wheel locks STS 502 security systems for bicycles STS 503 ground anchors. The standards were launched at Element’s Vehicle Physical Security Testing Open Day at their 50,000 square foot testing laboratory at Wednesbury, near Birmingham, on Thursday, 14 February. Steering wheel locks Addressing a specially invited audience from different related sectors within the security industry, Mark West, Operations Manager, Element, said: “These are the schemes we have started with, which we can add to if there is a new requirement or new product. The possibilities are endless.” “We are basically applying the test methodology we apply to doors, windows and security hardware to these kinds of products. It fits nicely,” he added. Guests saw a number of demonstrations of controlled physical attacks on a number of products including bike locks, steering wheel locks and wheel clamps using a range of simple tools such as a hacksaw to steal a bicycle and plastic wedges being hit by a hammer to remove a wheel clamp. Secure quality products The company became an United Kingdom Accreditation Service (UKAS) lab for the security testing of locks and lock cylinders in 1986 The security products, which were at the cheaper end of the marketplace, were breached within a few seconds underling the importance of secure quality products that can resist physical attack to standards required by SBD. Element services a diverse range of industry sectors including aerospace, transportation, oil and gas and fire, ‘where failure in-service is not an option’. The company became an United Kingdom Accreditation Service (UKAS) lab for the security testing of locks and lock cylinders in 1986; testing of doors and windows in 1996 when standards were first written; and became the established central location for the security certification of Warrington Fire Laboratories products in 2005. Enhanced security doors The scope of their tests include: Corrosion, including salt spray Environmental, including extreme hot and cold temperatures, thermal shock, humidity, solar infrared and water condensing Accelerated UV weathering for extreme sunlight Functionality and endurance testing of products like door handles and gear shifts Vibration and mechanical shock for products such as gear assemblies and interior components. Element is the largest provider of door and window and building hardware security testing in the UK. Their testing standards include: PAS 24 enhanced security doors and windows EN 1627 burglar resistant doors and windows on European level from residential to industrial doors BS 3621 enhanced security locks TS007 enhanced security cylinders and handles - a standard brought in to combat cylinder snapping TS008 enhanced security letterplates to include protection against fishing for keys TS009 enhanced security letterboxes for panels of mail boxes such as in student accommodation STS202 burglar resistance construction products including doors, windows, garage doors, shutters and grilles. Global testing capabilities The company can trace its roots back to 1827 under the name of Stork Engineering - a Dutch-based materials testing organisation. Element was formed out of a management buy-out in 2011 and purchased the Exova Group of companies in 2017. Mark West added: “We exist to help all of our customers to make certain that the materials and products that they make are safe, quality compliant and ultimately fit for purpose, using our 200 years of testing experience and our global testing capabilities.”