“One risk area is the proposed UK Cyber Security & Resilience Bill, which was introduced to Parliament on 12th November,” added Leemans. “The proposed new laws will place obligations on IT providers and supply chain partners supporting critical infrastructure. The Bill proposes mandatory reporting standards for medium and large companies providing services like IT management, IT help desk support and cyber security to private and public sector organisations like the NHS, will also be regulated for the first time. As a result of this, organisations operating in the UK need to ensure that they have effective security programs in place to comply with the requirements.”
