Welcome to the UK Cyber Security Policy Making Interactive Map (time-stamped 1st May, 2019), part of the research project ‘Evaluating Cyber Security Evidence for Policy Advice (ECSEPA)’.

 Below you will find a description of the interactive map and instructions for using it. The latter half of this page explains briefly the project’s rationale and purpose, how the map was created and its intended uses.


 Please leave us feedback using the form below on its usefulness or how we can improve it. This is important to us as we strive to produce impactful research.

This interactive map was created using the MindJet mind-mapping software. You can open the map directly in your Internet browser without the software. You can also perform keyword search (bottom right of screen) which is a useful feature in the viewing mode.

In its current version, the map contains approximately 2400 nodes representing data points, along with 2000 active links out to websites. A high-level governance structure showing leadership and hierarchy is displayed near the top of the branch-structure for government ministries that have a large portfolio for cyber security.

If you would like to further explore the map using features such as colour/power filtering (watch this instructional video), you can also download the trial version for free for 30 days from the Mindjet website.

If you have any questions, please don’t hesitate to contact the project Principal Investigator Professor Madeline Carrm.carr@ucl.ac.uk 

‘Cyber Security Policy Making in the UK: Mapping the Landscape’ is a small-grant project funded through RISCS that branched out from the Evaluating Cyber Security Evidence for Policy Advice (ECSEPA) main project  

 This project emerged from the realisation that there is a lack of clarity about how cyber security is organised within the UK Government – even for those who work at the heart of it. Understanding where cyber security policy is being developed and implemented, how different issue bases interact and coincide, where there is duplication and where there are gaps, is essential to understanding how a complex, rapidly developing policy landscape like this one should be organised to be most effective.

This project has gone through several phases of development:

  • Project launched and data captured from public domain websites to create earlier versions of the map;
  • Workshops held with the policy community to validate the work in progress;
  • Interactive map demonstrated to different communities and audiences, including in higher education and to international communities;
  • Web content, infographics, and research reports produced to engage users and help them understand the utility of the map.

The primary impact ambition of the ECSEPA team is directed to bringing benefit to the civil service and policy community. To do this most effectively, we are drawing on support from the National Cyber Security Centre, RISCS, and the Policy Impact Unit (PIU) based in University College London. Together, we developed a series of policy engagements that have been incorporated into the broader ECSEPA policy impact plan.

 Map launched at a UKAuthority 2019 event to a public sector audience

As we continue to seek ways of refining the map and keeping it up-to-date, we welcome opportunities to explore ideas for collaboration. If you would like to discuss ways that it could be modified for your specific needs, please get in touch.