The UK Government has unveiled the Cyber Security and Resilience Bill, a pivotal part of its Plan for Change, aimed at bolstering cyber defences for hospitals and energy suppliers.
This legislation is designed to protect public services and support economic growth by ensuring essential IT service providers are no longer easy targets for cyber criminals.
The Cyber Security and Resilience Bill includes several critical measures:
- Enhanced Cyber Defences: 1,000 service providers will be required to implement robust cyber security measures, reducing their vulnerability to cyber attacks.
- Strengthening Critical Infrastructure: The bill is part of a broader strategy to secure Britain's future, enhancing the resilience of vital public services and the wider economy.
- Economic Impact: Cyber threats have cost the UK economy nearly £22 billion annually between 2015 and 2019. The bill aims to mitigate such economic losses by improving cyber security.
- Government Powers: The Technology Secretary will have the authority to direct regulated organisations to enhance their cyber defences, ensuring rapid response to emerging threats.
- Data Centre Protections: Potential new measures will safeguard over 200 data centres, crucial for economic growth and innovation, including AI development.
The National Cyber Security Centre (NCSC) reported managing 430 cyber incidents in the year to September 2024, with 89 classified as nationally significant. The Cyber Security Breaches Survey highlighted that 50% of British businesses experienced a cyber breach or attack in the last 12 months, with over 7 million incidents reported in 2024.

Peter Kyle, Secretary of State for Science, Innovation and Technology, said:
“Economic growth is the cornerstone of our Plan for Change, and ensuring the security of the vital services which will deliver that growth is non-negotiable.
“Attempts to disrupt our way of life and attack our digital economy are only gathering pace, and we will not stand by as these incidents hold our future prosperity hostage.
“The Cyber Security and Resilience Bill, will help make the UK’s digital economy one of the most secure in the world - giving us the power to protect our services, our supply chains, and our citizens – the first and most important job of any government.”
The Cyber Security and Resilience Bill, confirmed in last year’s King’s Speech, marks the first detailed legislative proposal to enhance the UK's cyber defences. The bill will ensure the country's vital infrastructure and digital services are more secure than ever, with measures to swiftly address new threats.
The government is also taking steps to boost the UK’s cyber security industry, which has grown to £13.2 billion and created 6,600 new jobs in the past year. Initiatives include a new AI cyber security standard, an international coalition to enhance cyber skills, and the Cyber Local programme.
This comprehensive strategy underscores the government's commitment to safeguarding the UK's digital future and supporting economic growth through enhanced cyber security measures.
Image credit: iStock