The web, and by extension technology, is generally universal. Due to the design of technology, there are few major or glaring differences between cybersecurity in the United States and other countries such as England in the United Kingdom. Many of the same threats exist alongside the same methods to address and eliminate any cybersecurity events that do occur. However, despite all of the similarities, there are a couple differences that come out when doing a more in-depth analysis.

To begin with, all of the cybersecurity threats and risks that the United States faces are also faced by cybersecurity officers and users in England. This includes, but is not limited to, viruses, malware, ransomware, identity theft, organized crime, cyberterrorism, and cyber warfare. Many methods for addressing these incidents are the same as well. Cybersecurity officers in both countries must respond in a timely manner. Cybersecurity events are costly in both countries and result in loss of data, time, money, and customers.

The biggest difference is not in the cybersecurity risk, but the overall philosophy. The United Kingdom, prior to leave the European Union, strictly adhered to the General Data Protection Regulation (GDPR). Since leaving, they have adopted their own version. The GDPR focused on data protection and privacy within the European Union, but had major implications worldwide. Organizations both in the European Union as well as internationally are now told to comply by these standards when catering to European users or face hefty fines.

Meanwhile, the United States lacks any sort of American alternative. American companies must abide by the GDPR when reaching clientele in the European Union, but nothing exists that specifically targets American users. A common complaint is that American laws are extremely behind the technologically advanced times. While it doesn’t seem directly obvious, the GDPR influences the response to cybersecurity events and sets a common standard: there must be proper technical and administrative systems in place to predict, prevent, and address cybersecurity needs.

Generally, cybersecurity risks do not vary much between the two nations. The same risks apply and the same responses are typically given. However, the GDPR sets a major precedent and influences cybersecurity as a whole in England. This is missing in the United States cybersecurity field, even though we would likely benefit just as much from such regulation.

Information Commissioner’s Office. (n.d.). The UK GDPR. ICO. https://ico.org.uk/for-organisations/dp-at-the-end-of-the-transition-period/data-protection-now-the-transition-period-has-ended/the-gdpr/.