Question to the Cabinet Office:

To ask the Minister for the Cabinet Office, what steps Government is taking to enhance cyber resilience across critical (a) national infrastructure and (b) public institutions.

We are committed to strengthening cyber security across the UK’s Critical National Infrastructure (CNI), and all aspects of the Government digital estate.

The Government works closely with CNI operators in both the private and public sector to ensure resilience and preparedness to cyber threats, working to better understand and manage cyber risk, and minimise the impact of cyber incidents when they occur. As well as work to develop a more sophisticated understanding of cyber risk across UK CNI, the Government is focussed on ensuring that CNI operators are prepared to respond to and recover from incidents through better planning and regular exercising.

The King's Speech in July 2024 set out the Government’s intention to bring forward a Cyber Security and Resilience Bill, which will strengthen the UK’s cyber defences, and ensure that critical infrastructure and the digital services that companies rely on are secure.

To enhance the cyber resilience of public institutions, the Government Cyber Security Strategy has set a clear target for all government organisations to be resilient to known vulnerabilities and common attack methods by 2030.