Blog

UKC3 has announced that its four-year project to establish a national network of cyber security clusters is drawing to a close.

The national body has informed the 18 region and nation clusters with which it works that central operations will end as planned in March 2026.

The not‑for‑profit Community Interest Company was funded by the Department for Digital, Culture, Media & Sport, and later the Department for Science, Innovation and Technology, to build regional cyber capacity in line with the National Cyber Strategy.

Over four years, UKC3 supported a 50% increase in the number of regional operations.

The UK cyber security landscape was fragmented when UK Cyber Cluster Collaboration (UKC3) launched in 2022. Twelve clusters were operating, but working largely in isolation and struggling to build the collaborative momentum needed to drive national-level growth.

Four years on, there are 18 clusters covering almost the whole of the UK. UKC3 has worked in partnership with them, helping to deliver more than 600 events and engaging more than 17,500 people nationwide. 

A national network of businesses, universities, public sector organisations and individuals has come together to develop skills, drive innovation, and support more secure economic growth in cluster areas.

UKC3 will cease operations at the end of March. It leaves a stronger, more visible, and better equipped national network than that of four years ago. Its founding mission has been accomplished.

Independent evaluation has summarised the network development that has taken place. Clusters have grown in number, while maturing in delivery. Governance structures have become clearer, partnerships have developed further, and regional leaders have emerged as convenors of cyber activity.

Importantly, collaboration between regions has increased. What started as isolated efforts in different parts of the country has evolved into a connected national cyber community. Established systems and structures will ensure that clusters continue to share best practice, reduce duplication, and learn from one another after the closure of UKC3.

This development was supported by UKC3. As a central point of engagement, it helped raise the visibility of regional cyber activity and broke down silos between industry, academia and the public sector. 

Simon Newman, UKC3 Chair, noted that the closure of UKC3 does not represent the end of collaboration across the cyber ecosystem.

“The relationships, trust and shared understanding built through UKC3 provide a strong foundation for continued cluster-to-cluster working, future initiatives and new forms of cooperation which add real value,” he said.

“Our Board and Officers are proud of the role that UKC3 has played in supporting this journey, but the real credit belongs to the clusters themselves – the leaders, managers, boards and community members who have delivered activity on the ground.

“Their work has helped create a stronger, more connected cyber ecosystem across the UK, and that impact will continue well beyond UKC3.”

The UK’s 18 cyber security clusters have the governance, partnerships, confidence and connections to drive their own agendas forward independently. They will also be able to tap into emerging opportunities from increasingly devolved authorities around the UK.

Cyber London has launched a new forum for organisations to prepare for the next big shift in cyber security – the rise of quantum technologies. 

The aim of the Quantum Security Think Tank is to shape quantum innovation that is safe, responsible and genuinely useful for people, businesses and the economy. It will grow into a ‘knowledge hub’ for insight on quantum security.

Quantum computers have the power to solve complex problems exponentially faster than classical computers. This could unlock huge new possibilities, but also threaten many of today’s security tools – especially encryption. Without planning, this could leave data, services and critical systems at risk.

The Think Tank brings together academics, businesses, government and non‑profits “to shape a responsible future for quantum technologies”. Its mission is to be “the global catalyst for quantum innovation” so that progress is secure, ethical and benefits society rather than creating new problems.

The purpose of the Think Tank

The Quantum Think Tank focuses on turning complex quantum issues into practical guidance that organisations can use. It works on frameworks to secure future quantum systems and reduce the risk of misuse. It also develops good practice for managing risk, meeting regulations and staying aligned with new laws around quantum technologies.

Professor Douglas Paul OBE, Advisory Board Member of the Cyber London Quantum Security Think Tank, said: “While quantum computers capable of breaking RSA encryption within hours are still more than a decade away, some nation states are already harvesting encrypted data today to decrypt in the future. 

“If your data will retain value for decades, organisations must consider whether post-quantum cryptography, quantum key distribution, or quantum communications are the right path forward. These are the questions we aim to help organisations understand so they can invest in the right approaches and solutions.”

Quantum-safe security framework

To give organisations a clear path forward, Cyber London has created a step‑by‑step framework to help them move towards quantum‑safe security. Named the Quantum Safe Readiness Logic Train, it brings together 20 essential elements across five clear phases. In doing so, it provides a practical roadmap for leaders, technical teams and policymakers who need to prepare their environments for a post quantum world.

The Logic Train starts by explaining why the quantum threat matters and what new risks are emerging. It then builds understanding of post‑quantum cryptography (PQC), key concepts and regulatory expectations, before moving into planning, testing and long‑term resilience.

Five clear phases

The Logic Train is designed to be easy to follow and useful for both small teams and large enterprises. It is built around five phases:

1. Awareness – recognising the urgency of the quantum threat.
2. Understanding – learning the basics of PQC and how it will affect existing systems.
3. Preparation – planning the transition, reviewing architecture, governance and skills.
4. Implementation – testing and rolling out quantum‑safe solutions in real projects.
5. Sustainability – keeping security up to date through monitoring, collaboration and ongoing improvement.

The framework “allows organisations to see where they are on their journey and understand the steps required to progress with confidence,” while keeping pace with international standards, industry needs and government policy.

Benefits for organisations

Together, the Quantum Think Tank and the Logic Train offer organisations a clear explanation of quantum risks and what they mean in practice. They also provide a structured plan to move towards quantum‑safe security, rather than reacting at the last minute. The two platforms also help to align with future regulations and standards, reducing cost and confusion later on.

There are plans to hold round advisory tables, webinars and workshops in the future to enable the think tank to showcase expertise and innovation, and contribute to debates on cyber security.

Cyber London Co-Director, Professor Muttukrishnan Rajarajan, said: “Cyber London is where innovation and collaboration come together to address societal cyber security challenges. We operate as a marketplace for cyber science, co creation, partnerships, growth, and internationalisation.

“By launching the Quantum Security Think Tank, Cyber London is giving leaders, technologists and policymakers a practical way to prepare for quantum – turning a complex future risk into a manageable, step‑by‑step journey.”

UKC3 has backed the “cultural shift” towards public sector cyber security and resilience set out in the Government’s new Cyber Action Plan.

The Action Plan, launched this week, defines how trust and resilience in public services will be secured as part of a wider Roadmap for a Modern Digital Government. The Action Plan responds to “critically high” cyber risk across government and the wider public sector, aiming to give people confidence in the digital services they use every day.

Backed by more than £210 million of central investment and led by the new Government Cyber Unit at the Department for Science, Innovation and Technology (DSIT), the Action Plan introduces a stronger, more centralised model for managing government-wide cyber risk. It recognises that hostile states, criminal groups, and major outages are already causing serious disruption in areas such as healthcare, local government, libraries and transport.

Why the Action Plan is needed

The Action Plan shows that “nearly a third (28%) of the government technology estate is estimated to be legacy technology, and therefore highly vulnerable to attack”. It also identifies that GovAssure assessments show “significant gaps in departments’ cyber security and resilience, including widespread low maturity in fundamental controls such as asset management, protective monitoring, and response planning.” 

To address this, the plan sets four strategic objectives:

• Better visibility of cyber security and resilience risk, so that the Government can understand government‑wide and departmental cyber risks.
• Addressing severe and complex risks through central levers where departments cannot manage risks alone.
• Improving responsiveness to fast moving events, so that the Government can respond more effectively to rapidly evolving cyber and digital incidents.
• Rapidly increasing government‑wide cyber resilience, by focusing on remediating the most significant vulnerabilities, including legacy technology. 

In order to deliver these objectives, the Action Plan is structured around five core delivery strands required to drive practical change at scale.

Cyber resilience as mission

A core theme of the Action Plan is the need to ‘Defend as One’, with government and public sector teams treating cyber and digital resilience as a shared mission rather than acting in isolation. The Government Cyber Unit will coordinate with departments, arms-length bodies, local services, and suppliers so that risks are clearly owned, understood and managed across the system.

The Action Plan also focuses on stronger accountability for senior leaders, better use of data in decision‑making, and a new Government Cyber Profession to attract and grow cyber talent. Central services such as threat detection, vulnerability monitoring and incident coordination will be scaled so organisations can access proven capabilities more easily.

How UKC3 support cyber resilience

UKC3’s role is to support and connect regional cyber security clusters, helping them to grow local ecosystems, develop skills, and share best practice nationally. The Cyber Action Plan’s emphasis on collaboration, skills and scalable services aligns directly with this mission.

Through its clusters, UKC3 and its regional network can:

• Help public sector organisations and suppliers understand the Action Plan, its implications, and where to find support and services.
• Connect departments, local authorities, NHS bodies, and other public sector organisations with regional cyber expertise, including SMEs and academia, to support development.
• Support development of skills pipelines aligned with the new Government Cyber Profession through training, events, mentoring, and regional initiatives.

‘A cultural and operational shift’

The plan envisages central bodies, including the Government Cyber Unit and National Cyber Security Centre (NCSC) working closely with departments, arms-length bodies, and wider public sector organisations, including through scaled support and ‘cyber uplift’ teams. 

UKC3 co-chair, Simon Newman, said: “UKC3 strongly supports the Government Cyber Action Plan and its ambition to secure public services that are trustworthy and resilient. 

“Our national network recognises this as a cultural and operational shift, not just a technical programme, requiring sustained effort across the whole system.

“Working with Government, NCSC, and wider partners, UKC3 will continue to use the strength of its clusters to turn the plan into practical local action – building skills, helping organisations access the right services, and ensuring regional innovation and expertise align with Government plans for the UK to Defend as One.”

The West Midlands cyber sector is experiencing rapid growth – with Midlands Cyber at the forefront. 

Over 12 months, Worcestershire launched its first TechFest, Birmingham hosted Tech Week, and the region opened the West Midlands Cyber Hub – a dedicated space for cyber businesses to collaborate and grow.

Midlands Cyber, the region’s cyber cluster, has moved from hosting events towards building permanent infrastructure that supports businesses and talent across the sector.

Launched last month, the West Midlands Cyber Hub marked a significant development in building a more integrated and supportive regional ecosystem.

Based in central Birmingham – Led by Wayne Horkan and Andy Horkan from CyberTzar and created in partnership with TechWM, the Cyber Resilience Centre for the West Midlands, Aston University, and the Innovation Alliance – the Hub provides cyber businesses with a dedicated workspace and access to key networks and resources.

The Hub’s targets by March 2026 are ambitious: support 25+ SMEs, host 20+ sector events, and engage more than 100 participants. 

It’s designed as a hub-and-spoke model that will expand beyond Birmingham to Wolverhampton, Coventry, and Worcester – ensuring cyber opportunity reaches across the entire region.

The Hub delivers practical benefits including: 

• Access to partnerships and markets – connections across the regional cyber ecosystem and beyond.
• Innovation and skills support – links to Aston University and resources to help businesses stay competitive in an evolving threat landscape.
• Investment visibility – addressing the region’s historical funding gap by attracting investment and keeping regional talent local.
• Community and inclusion  – a focused environment that values diverse voices and perspectives in cyber.

The West Midlands now has the infrastructure, partnerships, and momentum to build on this foundation and support genuine cyber sector growth. 

Building on the success of 2025’s inaugural event, TechFest 2026 is already in planning, showing a pattern of sustained, strategic growth and a commitment to continuous ecosystem development.

Ben Shorrock, UKC3 Director and Ecosystem Development Lead, said: “Our 18 clusters have deep roots in their local cyber security ecosystems, and what’s happening in the West Midlands is a powerful example of how dedicated infrastructure, partnership, and sustained focus can accelerate growth and create real opportunity for businesses and talent.”

North East Cyber Security Cluster organisation, CyberNorth has launched the CyberNorth Student Ambassador programme, an initiative designed to further strengthen engagement between CyberNorth and students across universities and colleges in the region.

The Student Ambassador programme creates a direct connection between CyberNorth and the next generation of cyber security talent, and appointed ambassadors will act as key representatives of CyberNorth within their institutions, helping to raise awareness of CyberNorth’s initiatives, events, and industry opportunities whilst encouraging greater student participation in the regional cyber security ecosystem.

The initiative intrinsically fits CyberNorth’s mission ‘To make the North East THE place for cyber security, and reflects CyberNorth’s ongoing commitment to developing local talent, strengthening collaboration between education and industry, and ensuring students are well connected to real-world cyber security opportunities across the region.

CyberNorth plays a pivotal role in the North East and is known nationally and internationally as a renowned regional force to lobby and leverage opportunities for the sector in the region. Helen Matthews, Delivery Manager – Skills at CyberNorth, will lead on the initiative under her remit to ensure the regions cyber workforce of today and tomorrow are skilled and equipped for success.

Helen Matthews says, “The North East has a growing and vibrant cyber security sector, by making the move to recruit Student Ambassadors this in turn gives us the opportunity to work directly with students to raise awareness, build skills, and inspire the next generation. 

We are excited to have a number of roles already filled and this initiative is a prime example of the power of collaboration as we bring together student ambassadors from universities across the North East. By empowering students to act as ambassadors within their own institutions, we’re helping them build networks, develop key employability skills, and gain greater visibility of the opportunities available across the North East’s growing cyber sector.”

The North East is a hotbed for innovation and collaboration and the only place outside London to boast two NCSC Centres of Excellence in Cyber Security Research at Northumbria University and Newcastle University, leaving the region well placed to lead the charge in encouraging people to take up careers and build skills in cyber security. 

A number of Student Ambassadors have already been recruited including, Akolade Akinlami (Sunderland University) Olivia Gibson (Durham University) Annie Wilkinson (Northumbria University) and Adeela Bashir (Teesside University) with a current opening for Newcastle University, Student Ambassadors will work closely with CyberNorth to:

• Promote cyber security awareness
• Support regional events, campaigns, and outreach activities
• Act as a link between universities, industry, and other students to share insights about cyber security careers, pathways, and skills development initiatives
• Champion cyber security careers to schools, colleges, and fellow students
• Provide feedback to CyberNorth on student interests, barriers to participation, and emerging needs in the academic community.

Participation in the programme will support the next generation of cyber security experts to gain valuable experience in industry engagement, leadership, communications, and professional networking, alongside exposure to real-world cyber security challenges and experts.

CyberNorth focuses on strengthening the development of three main areas in the region a.k.a. ‘Pillars’ Skills (for today and tomorrow) Innovation (future proofing the sector for prosperity) and Ecosystem (support and collaboration for growth).

Helen Matthews added: “Over the years CyberNorth have built great relationships with universities across the North East and there is a mutual commitment to work in unison to support the programme. 

The initiative aligns with regional priorities around digital skills, innovation, and economic growth, helping to ensure the North East continues to develop a strong cyber security capability.” 

As a key contributor to the UK’s overall cyber strategy through their partnership with UKC3 and Department for Science, Innovation and Growth, CyberNorth spearheads the growth of a thriving cyber security community in the North East by promoting all things cyber, to ensure the region gets noticed internationally and nationally as a centre for excellence for the cyber security sector.

Since inception, CyberNorth has built a vibrant cybersecurity community in the North East, supporting 100 businesses and over 2,000 professionals, while collaborating across FinTech, Space, Maritime, and Defence sectors. Strong relationships with the Department of Science, Innovation and Technology and the National Cyber Security Centre have amplified the region’s profile nationally and internationally.

UKC3 Co-Chair Dr Ismini Vasileiou has been appointed to the UK Government’s new Women in Tech Taskforce.

The taskforce is led by Secretary of State for Science, Innovation and Technology, Liz Kendall, and brings together 15 high-profile industry leaders and experts from across the tech sector. Its purpose is to advise on how the Government can better support industry diversity.

Over the next 18 months, the taskforce will act to ensure the UK accesses the full talent pool, market opportunities, and innovation capacity. Research shows women leaving tech leads to estimated loss of £2-£3.5 billion annually.

The taskforce’s ambitions include expanding opportunities for women across the UK, driving sustainable and inclusive economic growth, shaping government action and supporting the development of technology that benefits everyone.

The taskforce’s inaugural meeting was held at The British Science Association (BSA) in London yesterday. It brought together industry and policy leaders to examine how to remove the systemic barriers that prevent women from entering, progressing and leading in technology roles.

Dr Vasileiou, who is also founder of East Midlands Cyber Security Cluster and Associate Professor at De Montfort University Leicester, joined business leaders including Alison Kirkby, CEO of BT group, Emma O’Dwyer, head of public policy at Uber, and Francesca Carlesi, CEO of the UK arm of Revolut.

“It’s a privilege to be invited to join DSIT’s Women in Tech Taskforce,” said Dr Vasileioum who is Skills Lead for UKC3.

“Drawing on my work in cyber security and digital skills, I’m keen to help shape solutions that move beyond discussion and deliver meaningful, long-term change for women working in technology.

“We will be supporting action-driven solutions that align policy, skills and industry practice to deliver lasting impact for women in technology.”

Ms Kendall said: “Technology should work for everyone, that is why I have established the Women in Tech Taskforce – to break down the barriers that still hold too many people back, and to partner with industry on practical solutions that make a real difference.

“This matters deeply to me. When women are inspired to take on a role in tech and have a seat at the table, the sector can make more representative decisions, build products that serve everyone, and unlock the innovation and growth our economy needs.”

Founding members of the Women in Tech Taskforce

• Liz Kendall: Secretary of State for Science, Innovation and Technology
• Dr. Anne-Marie Imafidon: Founder – STEMETTES
• Allison Kirkby: CEO – BT Group
• Anna Brailsford: CEO and Co-Founder – Code First Girls
• Francesca Carlesi: CEO – Revolut
• Louise Archer: Academic – Institute of Education
• Karen Blake: Tech Inclusion Strategist, Former Co-CEO of the Tech Talent Charter
• Sue Daley OBE: Director Tech and Innovation –  techUK
• Vinous Ali: Deputy Executive Director, StartUp Coalition  
• Charlene Hunter: Founder – Coding Black Females
• Dr. Hayaatun Sillem: CEO – Royal Academy of Engineering
• Kate Bell: Assistant General Secretary at TUC
• Amelia Miller: Co-Founder and CEO –  ivee
• Dr Ismini Vasileiou: Director – East Midlands Cyber Security Cluster 
• Emma O’Dwyer:  Director of Public Policy – Uber