08 Nov 2024

Government seeking feedback for Cyber Security & Resilience Bill

Members are encouraged to complete survey to help DSIT assess the impact of the changes on those already regulated by the NIS Regulations or who will be regulated by the forthcoming CSR Bill.

The Department for Science, Innovation & Technology is updating the NIS Regulations through the Cyber Security and Resilience Bill to strengthen the UK’s defences and ensure that more essential digital services than ever before are protected. DSIT ran a consultation on the policy proposals in 2022, however there are some evidence gaps that need to be addressed or updated. We invite you to fill out this Call for Evidence* on some of the proposals to help DSIT assess the impact of the changes on those who are already regulated by the NIS Regulations or who will be regulated by the forthcoming CSR Bill.

This survey is being shared with a wide range of stakeholders, both those that are regulated under the NIS Regulations currently and those that may be captured under the 2022 proposals**. The survey will introduce the sections of the NIS Regulations that may change with a very brief introduction.

Please do not share any personal data in this survey as this may result in that part of your response being deleted.

The deadline for this survey is open until Thursday 21 November.

If you are not currently regulated by the NIS Regulations, we encourage you to review the gov.uk page that covers a brief overview.

** Government's prosposals to update the NIS regulations to improve the UK’s cyber resilience included bringing managed service providers (MSPs) into scope of the regulations to keep digital supply chains secure. The survey includes questions for MSPs, and DSIT's proposed characteristics of an MSP have 4 criteria:

The service is provided by one business to another business.
The service is related to the provision of IT services, such as systems, infrastructure, networks, and/or security.
The service relies on the use of network and information systems, whether this is the network and information systems of the provider, their customers or third parties.
The service provides regular and ongoing management support, active administration and/or monitoring of IT systems, IT infrastructure, IT network, and/or the security thereof

*For ease of reference, you can access a PDF version of the survey questions below:

Cyber Security & Resilience Bill_DSIT Survey Questions

Complete the survey now.

Government seeking feedback for Cyber Security & Resilience Bill

Related topics

More on 'topic'

Countdown to Data Privacy Day

Unlocking value with rural broadband: a policy rethink

The Data Protection and Digital Information (No. 2) Bill: its Impact on the adoption of Interoperability Standards in Healthcare IT and what it means for system suppliers

techUK welcomes G7 Global Tax Agreement

Data, which direction? How can the Government best reform its data protection regime?

Home Secretary announces Computer Misuse Act Review