Cyber Security and Resilience Bill risks resilience

By
riskacademy
-
0
22

By Ilkka Turunen, Field CTO, Sonatype

Why Britain’s next big cyber law could miss the point

The UK’s Cyber Security and Resilience Bill is being promoted as a landmark step towards improving national cybe r resilience. It contains several important measures, including expanded regulatory oversight, broader coverage of critical suppliers and faster incident reporting requirements. However, much of the attention has focused on reporting timelines. While earlier notification may improve visibility, coordination and threat intelligence sharing, it does little to address the underlying software supply chain weaknesses and security practices that enable many cyber incidents in the first place.

Unlike the EU’s NIS2 regime, which places significant emphasis on governance, accountability and supply-chain security obligations, the UK debate has focused heavily on incident reporting requirements.

Join The European Business Briefing

New subscribers this quarter are entered into a draw to win a Rolex Submariner. Join 40,000+ founders, investors and executives who read EBM every day.

Subscribe

Why faster reporting does not deliver resilience

Faster…

Read More…

Актуальные книги на английском

RELATED ARTICLESMORE FROM AUTHOR

LEAVE A REPLY

Please enter your comment!
Please enter your name here