Second Post-Implementation Review of the Network and Information Systems Regulations 2018

04 July 2022

Proposing MP

Julia Lopez Con

Hornchurch and Upminster

Type

Written Ministerial Statement

Department

Department for Digital, Culture, Media and Sport

View on Parliament.uk -->

At a Glance

Issue Summary

Julia Lopez is publishing the second post-implementation review of the Network and Information Systems Regulations 2018, which assesses their impact and effectiveness since their implementation.

Action Requested

The minister announces that the Government will retain the Regulations to continue incentivising organisations to improve cyber security. The report also recommends changes based on a public consultation on proposals for cyber security-related legislation, with outcomes expected later this year.

Key Facts

The Network and Information Systems Regulations came into force in May 2018.
The review concludes that the Regulations have driven improvements to the security of regulated organisations by increasing prioritisation of cyber security at senior levels and improved incident response management.
Recommendations for changes to strengthen and future-proof the regulatory framework were included in a public consultation on proposals for cyber security-related legislation, which will be published later this year.

▸ Assessment & feedback

Summary accuracy

Feedback type

Comment (optional)