UK companies should face expanded cyber obligations, report says

( September 19, 2025, 13:44 GMT | Official Statement) -- MLex Summary: UK companies should face stricter cybersecurity obligations, an independent report commissioned by the UK government said on Friday. The government should introduce additional baseline standards for selected sectors, tighten corporate cyber-risk reporting, and map international regulations to ease compliance, the policy paper by Bristol University and Imperial College London said. The report recommended early publication of the National Cyber Security Centre’s guidance to reduce the regulatory burden and said the forthcoming Cyber (Security and Resilience) Bill should align with the EU’s NIS2.Statement follows. Report attached....

Prepare for tomorrow’s regulatory change, today

MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.

Know what others in the room don’t, with features including:

Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
Curated case files bringing together news, analysis and source documents in a single timeline

Experience MLex today with a 14-day free trial.

Start Free Trial

Already a subscriber? Click here to login

UK companies should face expanded cyber obligations, report says

Prepare for tomorrow’s regulatory change, today

Documents

Related Sections