JCSC News: Iran guidance, final workshop, and an Easter break

April 02, 2026 • Estimated Reading Time: 10 minutes

Table of Contents

Dear reader,

It’s been another month of steady, behind-the-scenes work. As well as supporting several local incidents with intelligence, advice and guidance, we’ve continued on our day-to-day work.

We’re pleased to have welcomed John McCarthy to Jersey as he joins the GCSC team as our Cyber Analyst. When JCSC was contracted to manage GCSC on behalf of the States of Guernsey, we were always clear that we would need both local expertise and a strong pan-Island team. John’s appointment helps establish this combination from the start. We anticipate that he’ll be joined by the a Head of Cyber Defence and a Junior Analyst in the next few months. (Recruitment for the former job is still open until 9 April - see below).

As we start to see (and feel) the knock-on effects of the Iran-US conflict, it demonstrates that cyber is a global risk and therefore why collaboration across jurisdictions and borders is so important. That’s why I’ll be joining colleagues from Guernsey and the Isle of Man to attend CYBERUK in Glasgow. Having access to global, regional and local expertise helps us better protect the Channel Islands.

Finally, thank you to those of you who have attended our Cyber Law workshops. As we prepare for the final Cyber Security Law workshop, we are also beginning to collate the feedback we’ve had from the 90+ people who have attended the workshops so far. We have committed to producing a report with your feedback, and while we can’t finalise this report until after the final workshops, some clear themes are beginning to emerge.

OES have told us they want support to assess their organisations risks, clarity on the variety and appropriateness of standards, and clear definitions for key terms in the Law.

If you weren’t able to make it to a workshop - or simply want to refresh your memory, or share information with colleagues - you can access the slides and a recording via our website.

Until next time,

Matt

Bank Holiday closures

As usual, our Operations Centre will be closed for the upcoming Bank Holidays on Friday 3 April (Good Friday) and Monday 6 April (Easter Monday).

However, we’ll still be available. You can:

  • Report an incident to us via [email protected] or using this form

  • Report a vulnerability using this form

  • Call us on in an emergency +44 (0)1534 500 050 in Jersey or + 44 (0)1481 736 050 in Guernsey

Iran Conflict: Cyber Risks for the Channel Islands

Following the evolving events in the Middle East, we’ve released advice for organisations and individuals in the Channel Islands. Read the full article, which includes:

  • The impacts we’re seeing in Jersey and Guernsey

  • The risks to digital infrastructure and supply chain, and how these might affect us

  • Steps you can take to protect your organisation, and yourself

Guernsey Senior Analyst appointed

John McCarthy, Senior Analyst at GCSC

Last week we were pleased to welcome John McCarthy to the team as our Senior Cyber Analyst for Guernsey Cyber Security Centre (GCSC). John has joined our team from his previous role at Bailiwick of Guernsey Law Enforcement where he was a Criminal Intelligence Officer.

John has spent the last week in Krakow with European cyber defence network TF-CSIRT getting up to speed on cyber incident response. His law enforcement background, understanding of the Bailiwick context, and focus on OSINT and digital forensics will complement our pan-Island team.

We continue to build out GCSC and will have further updates over the next few months. In the meantime, you can reach us in Guernsey at [email protected] or by calling 01481 736 050. We’ve also begun to launch social media activity and you can follow GCSC on LinkedIn here.

Cyber Law Workshops: final session

Our Cyber Security Law workshop for the Banking sector has been rescheduled to Thursday 9 April (12:30 - 14:00). This is the final workshop in the series, although you are always welcome to email us ([email protected]) to speak with us about whether your organisation is an Operator of Essential Service, and what steps you’ll need to take if you are.

Cyber Law Workshops: resources and feedback

Thank you to everyone who attended the workshops so far. We have now published the recording of the workshop presentation online, along with the slides and an online version of the key questions. If you have missed the workshops or were unable to attend, you can watch the video and provide your feedback online to help us tailor our support.

Cyber News

Russian botnet leader sentenced

The manager of a botnet that helped extort more than $14.7 million from US companies in 2018-2019 has be sentenced to two years in prison. While the sentencing is good news, it does demonstrate the delay between an attack and successful prosecution. And for those companies who did pay the ransom, there’s no way of recovering those funds.

Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks

thehackernews.com/2026/03/russian-hacker-sentenced-to-2-years-for.html

Medical provider becomes Iran-US war target

Stryker (a US medical technology which supplies the NHS) has been targeted by Iran-linked hackers as part of the wider conflict. NHS England have warned of potential disruptions to medical supplies: another stark reminder that in a connected world, global conflicts can have national impacts.

Stryker Says Malicious File Found During Probe Into Iran-Linked Attack

www.securityweek.com/stryker-says-malicious-file-found-during-probe-into-iran-linked-attack

Jobs in Cyber

Are you recruiting for a cyber role locally? Tell us at [email protected] and we’ll share your job listing with the community.

Head of Guernsey Cyber Defence: Guernsey Cyber Security Centre (GCSC)

The Head of Guernsey Cyber Defence will lead the operational activity of GCSC as part of the senior management team of the Jersey and Guernsey Cyber Security Centres, promoting and improving the cyber resilience in Guernsey and its community of organisations, business and citizens.

Cyber Manager, Risk Assurance: PwC

This role would suit someone with 5 years’ experience in the industry, knowledge of industry frameworks, and experience of managing large projects.

Penetration Tester: Cortida Ltd

This role would suit someone with three years’ experience of pen testing and experience with a range of pen testing tools.

Penetration Testing Team Leader: Cortida Ltd

This role would suit someone with a CHECK Team Leader qualification, six years’ experience of pen testing, and the ability to build relationships with a range of stakeholders.

Tools of the Month

Each month, we provide a round up of tools that our team have found useful, and which could be useful to cyber security professionals. If you’ve found a helpful tool you’d like to share, please email us and we’ll include it in a future newsletter.

Aurelian

Aurelian detects secrets, misconfigurations, public exposure, and privilege escalation paths across AWS, Azure, and GCP

Sketchy

A security scanner that checks for signs that a package, repo, or script could be malicious.

Did you know? JCSC can check potentially malicious files for you in our sandbox, but please let us know before sending them over.