Active Announced in the King's Speech on 13 May 2026. 6 of 176 events
Lifecycle stage Implementation
1,665 days in stage

Cyber Security and Resilience Bill

The King's Speech 2026 cyber bill to strengthen the UK's defences against cyber threats, update resilience duties, and protect essential and digital services.


Showing 6 of 176 signals
Family 1
Signal
Year
Body
Role
Clear all
28 Jan 2026 | Guidance Department for Energy Security and Net Zero Department for Science, Innovation and Technology Information Commissioner's Office National Cyber Security Centre Ofgem Regulatory Policy Committee evidence

Preparing for severe cyber threat: why leaders must act now – NCSC Guidance

Why linked: Filled the "Sector-specific cyber resilience guidance (energy, water, transport, health, finance)" gap via web research

NCSC guidance published January 2026 directed at operators of critical national infrastructure across energy, transport, health, communications and financial services sectors, advising on how to prepare for and respond to severe cyber threats in the context of the Cyber Security …

14 Jan 2026 | Guidance Department for Science, Innovation and Technology evidence

NIS Guidance for Downstream Gas and Electricity Operators of Essential Services in GB (v3.0)

Why linked: Filled the "Sector-specific guidance on NIS2 compliance issued by competent authorities" gap via web research

Sector-specific NIS compliance guidance issued by Ofgem (as joint competent authority with DESNZ) for downstream gas and electricity operators of essential services in Great Britain, updated January 2026 to reflect the evolving NIS/NIS2-aligned regulatory framework. Fulfils Ofgem's statutory duty under …

4 Aug 2025 | Guidance Department for Energy Security and Net Zero Department for Science, Innovation and Technology Information Commissioner's Office National Cyber Security Centre Ofgem Regulatory Policy Committee evidence

Cyber Assessment Framework (CAF) – NCSC Guidance Collection

Why linked: Filled the "Sector-specific cyber resilience guidance (energy, water, transport, health, finance)" gap via web research

The NCSC's primary sector-specific cyber resilience guidance framework, explicitly designed for organisations operating essential services in energy, healthcare, transport, digital infrastructure and government. It provides sector-specific profiles (Basic and Enhanced) and is directly cited in the Cyber Security and Resilience …

26 Mar 2024 | Guidance Department for Transport linked direct

Enforcement management model: transport sector

Why linked: Enforcement management model for transport sector under NIS Regulations 2018; sector-specific guidance on resilience duties and enforcement that informs the Bill's approach to critical infrastructure operators

Helps operators of essential services understand the enforcement options under the Network and Information Systems Regulations (2018) and how DfT will apply these within the transport sector.

19 Oct 2023 | Guidance Department for Business, Energy & Industrial Strategy Department for Energy Security and Net Zero Context · primary home: Cyber Security Incentives and… linked evidence

Implementation of the Network and Information Systems Regulations 2018 for the energy sector in Great Britain

Why linked: Filled the "Sector-specific guidance on NIS2 compliance issued by competent authorities" gap via web research

High level policy principles for compliance with the Network and Information Systems (NIS) Regulations 2018, for operators in energy sector.

1 Sep 2023 | Guidance Department for Science, Innovation and Technology evidence

DESNZ Policy Guidance for the Implementation of the Network and Information Systems Regulations (September 2023)

Why linked: Filled the "Sector-specific guidance on NIS2 compliance issued by competent authorities" gap via web research

Statutory policy guidance issued by the Department for Energy Security and Net Zero (DESNZ) as competent authority for the energy sector in Great Britain, setting out NIS compliance obligations for operators of essential services including security duties, incident reporting thresholds, …