The UK government has introduced the Cyber Security and Resilience Bill to enhance national security and protect critical infrastructure, including the regulation of managed service providers and critical suppliers. The legislation incorporates updates inspired by the EU’s NIS2 directive, emphasizing incident reporting, supply chain management, and stronger enforcement powers. #NIS2 #CyberSecurityBill
Keypoints
- The bill aims to regulate over 900-1100 managed service providers for the first time.
- Critical suppliers will be designated by regulators, requiring minimum security standards.
- Incident reporting will be expanded, with initial reports due within 24 hours.
- The Information Commissioner’s Office will gain increased powers to identify and assess risks of digital service providers.
- Penalties for serious cybersecurity offenses will become tougher and turnover-based.
Read More: https://www.infosecurity-magazine.com/news/government-cyber-security/