Only a few days to go: We’re raising £25,000 to keep TheyWorkForYou running and make sure people across the UK can hold their elected representatives to account.

Donate to our crowdfunder

Infrastructure: Cybercrime

Cabinet Office written question – answered on 29th January 2019.

Alert me about debates like this

Photo of Jo Platt Jo Platt Shadow Minister (Cabinet Office)

To ask the Minister for the Cabinet Office, what powers the Government has to audit the cyber security of (a) UK critical national infrastructure operators and (b) their major suppliers.

Photo of David Lidington David Lidington Chancellor of the Duchy of Lancaster, Minister of State (Cabinet Office)

In 2018 the Government put in place new powers under the Network and Information Security (NIS) Regulations which require the most significant operators in the energy, transport, health, water, and digital infrastructure sectors to manage cybersecurity risk, including from the supply chain. The Competent Authorities who regulate the critical national infrastructure operators in scope of NIS may inspect and potentially impose fines of up to £17 million. Outside of NIS any powers are sector specific. Expert technical support from the National Cyber Security Centre (NCSC) is provided to regulators and operators to ensure that cyber security risk is managed and mitigated in a consistent way across the UK’s CNI.

Does this answer the above question?

Yes0 people think so

No0 people think not

Would you like to ask a question like this yourself? Use our Freedom of Information site.