Cyber Security and Resilience Bill
The King's Speech 2026 cyber bill to strengthen the UK's defences against cyber threats, update resilience duties, and protect essential and digital services.
2026
To ask the Secretary of State for Science, Innovation and Technology, what recent assessment she has made of the adequacy of the UK's preparedness for AI-enabled cyber threats.
Why linked: Written parliamentary question on UK preparedness for AI-enabled cyber threats (April 2026); topical scrutiny question on emerging cyber threats within the scope of the Bill's resilience framework
To ask the Secretary of State for Science, Innovation and Technology, what recent assessment she has made of the adequacy of the UK's preparedness for AI-enabled cyber threats.
To ask the Minister for the Cabinet Office, what steps he is taking to ensure that organisations critical to national security and critical national infrastructure have secure and resilient digital processes and platforms.
Why linked: Written question on critical national infrastructure cyber security and resilience—directly on-topic PQ addressing CII protection duties
To ask the Minister for the Cabinet Office, what steps he is taking to ensure that organisations critical to national security and critical national infrastructure have secure and resilient digital processes and platforms.
To ask the Secretary of State for Science, Innovation and Technology, what assessment he has made of the adequacy of the Cyber Security and Resilience Bill's incident reporting criteria for capturing novel failure modes arising from autonomous or adaptive
Why linked: March 2026 PQ on the adequacy of the Bill's incident reporting criteria — directly on Bill design.
To ask the Secretary of State for Science, Innovation and Technology, what assessment he has made of the adequacy of the Cyber Security and Resilience Bill's incident reporting criteria for capturing novel failure modes arising from autonomous or adaptive
To ask the Secretary of State for Science, Innovation and Technology, with reference to the Cyber Security and Resilience Bill (Network and Information Systems) Bill, a) what estimate she had made of the shortage of the cybersecurity skills which will be
Why linked: March 2026 PQ on cost and impact estimates relating to the CSR Bill.
To ask the Secretary of State for Science, Innovation and Technology, with reference to the Cyber Security and Resilience Bill (Network and Information Systems) Bill, a) what estimate she had made of the shortage of the cybersecurity skills which will …
To ask the Secretary of State for Science, Innovation and Technology, what discussions she has had with ministerial colleagues from a) the Home Office, b) HM Treasury and c) the Department for Science, Innovation and Technology on coordinated action to ta
Why linked: March 2026 PQ on cross-departmental coordination on the Bill (Home Office, HMT, DSIT).
To ask the Secretary of State for Science, Innovation and Technology, what discussions she has had with ministerial colleagues from a) the Home Office, b) HM Treasury and c) the Department for Science, Innovation and Technology on coordinated action to …
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by National Grid (CSRB40)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Microsoft (CSRB39)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Cloudflare (CSRB38)
Cyber Security and Resilience (Network and Information Systems) Bill — Supplementary written evidence submitted by techUK (CSRB37)
Cyber Security and Resilience (Network and Information Systems) Bill — Further written evidence submitted by iProov (CSRB35)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the Regulatory Policy Committee (RPC) (CSRB34)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Capita (CSRB33)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the UK Cyber Security Council (CSRB32)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by VIRTUS Data Centres (CSRB31)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by CrowdStrike (CSRB30)
Cyber Security and Resilience (Network and Information Systems) Bill — Supplementary written evidence submitted by the NCC Group (CSRB29)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the British Insurance Brokers' Association (BIBA) (CSRB28)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Shoosmiths LLP (CSRB27)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the Online Safety Act Network (CSRB26)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Rob Wright, Chief Commercial Officer, Hexiosec, Ambassador for Software Security for DSIT (CSRB25)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Dr Aine MacDermott, Liverpool John Moores University (CSRB24)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by The ABI (CSRB23)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the Internet Services Providers' Association (ISPA) (CSRB22)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by BCS, The Chartered Institute for IT (CSRB21)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by National Gas (CSRB20)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Infoblox (CSRB19)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the CyberUp Campaign (CSRB18)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by iProov (CSRB17)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Liberty and Privacy International (CSRB16)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the Cybersecurity Business Network (CSRB15)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by UK Finance (CSRB14)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Philip Virgo (CSRB13)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Zurich UK (CSRB12)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Doctors Lam and Seifert (CSRB11)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by ISC2 (CSRB10)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by PauseAI UK (CSRB09)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the Institution of Engineering and Technology (IET) (CSRB08)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Richard Holland (CSRB07)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by the UK Cyber Security Council (UK CSC) (CSRB06)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by ISACA (CSRB05)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Open Rights Group (CSRB04)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Fortaegis (CSRB03)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Rik Ferguson (CSRB02)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Rob Newby (on the Retail sector) (CSRB01B)
Cyber Security and Resilience (Network and Information Systems) Bill — Written evidence submitted by Rob Newby (on the Energy sector) (CSRB01A)
2025
Correspondence from Minister for AI and Online Safety, re: Introduction of the Cyber Security and Resilience (Network And Information Systems) Bill, 12 November 2025
Why linked: Correspondence from the Minister for AI and Online Safety on the introduction of the CSR Bill.
Direction: unknown
Correspondence from Parliamentary Under-Secretary of State for AI and Digital Government, in relation to the Cyber Security and Resilience Bill, dated 1 April 2025
Why linked: April 2025 correspondence from the Parliamentary Under-Secretary on the Bill, immediately following the policy statement.
Direction: unknown
To ask the Secretary of State for Science, Innovation and Technology, whether he plans to include provisions within the Cyber Security and Resilience Bill on requiring regulated organisations to adopt cybersecurity to help tackle AI-enabled threats.
Why linked: March 2025 PQ on whether the Bill will include provisions on requiring regulated organisations to adopt specific measures — directly on Bill scope.
To ask the Secretary of State for Science, Innovation and Technology, whether he plans to include provisions within the Cyber Security and Resilience Bill on requiring regulated organisations to adopt cybersecurity to help tackle AI-enabled threats.
To ask the Secretary of State for Science, Innovation and Technology, whether the Cyber Security and Resilience Bill will ensure that data centres are (a) secure and (b) resilient.
Why linked: March 2025 PQ on whether the Bill will ensure data centres are secure and resilient — directly on Bill scope.
To ask the Secretary of State for Science, Innovation and Technology, whether the Cyber Security and Resilience Bill will ensure that data centres are (a) secure and (b) resilient.
To ask the Secretary of State for Science, Innovation and Technology, what steps his Department is taking to ensure that the public sector is adequately protected under the forthcoming Cyber Security and Resilience Bill, and whether he plans to extend reg
Why linked: March 2025 PQ on the public sector's protection under the forthcoming CSR Bill.
To ask the Secretary of State for Science, Innovation and Technology, what steps his Department is taking to ensure that the public sector is adequately protected under the forthcoming Cyber Security and Resilience Bill, and whether he plans to extend …
2024
Should our successor Committee wish to examine the cyber security and resilience of the UK’s critical national infrastructure, we recommend it considers: • Following up how the Government is monitoring the emerging threats from nation states, state-sponsored actors, and criminal organisations on the UK’s critical national infrastructure. This should include the threat from pre- positioning; • considering how the Government is protecting and strengthening critical national infrastructure suppl...
Why linked: Cited by workspace synthesis
Should our successor Committee wish to examine the cyber security and resilience of the UK’s critical national infrastructure, we recommend it considers: • Following up how the Government is monitoring the emerging threats from nation states, state-sponsored actors, and criminal …
To ask His Majesty's Government what plans they have to publish draft legislation incorporating proposed reforms to the Network and Information Systems Regulations 2018.
Why linked: March 2024 PQ on plans to publish draft legislation incorporating proposed NIS reforms — directly on the lead-up to the Bill.
To ask His Majesty's Government what plans they have to publish draft legislation incorporating proposed reforms to the Network and Information Systems Regulations 2018.
2023
Correspondence from Sarah Munby, Permanent Under-Secretary of State, Department for Science, Innovation and Technology, re Building Digital UK, dated 23 November 2023
Why linked: DSIT correspondence on Building Digital UK may contain digital resilience infrastructure policy relevant to modernising cyber security framework
Direction: unknown