|Would it be more effective to fine the bosses, rather than the organisation!|
New measures to protect the nation’s critical infrastructure & digital services from cyber attacks and computer network failure have come into force.
Bosses of firms in health, water, energy, transport & digital infrastructure will now be expected to have robust safeguards in place against cyber threats and report breaches & network outages to regulators within 72 hours or they face fines of up to £17m.
Fines would be a last resort and will not apply to operators which have assessed the risks adequately, taken appropriate security measures and engaged with regulators but still suffered an attack.The NIS Directive is an important part of the Government’s five-year £1.9bn National Cyber Security Strategy to protect the nation from cyber threats and make the UK the safest place to live and work online. It will ensure essential service operators are taking the necessary action to protect their IT systems.